CVE-1999-1041

Published: Aug 27, 1998Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

Buffer overflow in mscreen on SCO OpenServer 5.0 and SCO UNIX 3.2v4 allows a local user to gain root access via (1) a long TERM environmental variable and (2) a long entry in the .mscreenrc file.

Affected (2)

Products: Sco: Openserver, Unix

Sco

2 products

Openserver

Unix

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Sco Openserver	Version 5.0
Sco Unix	Version 3.2v4

References (8)

ftp://ftp.sco.com/SSE/security_bulletins/SB-98.05a (unsafe URL)

Source: cve@mitre.org

http://marc.info/?l=bugtraq&m=90686250717719&w=2

Source: cve@mitre.org

http://www.cert.org/vendor_bulletins/VB-98.10.sco.mscreen

Source: cve@mitre.org

PatchThird Party AdvisoryUS Government Resource

http://www.securityfocus.com/archive/1/10420

Source: cve@mitre.org

Vendor Advisory

ftp://ftp.sco.com/SSE/security_bulletins/SB-98.05a (unsafe URL)

Source: af854a3a-2127-422b-91ae-364da2661108

http://marc.info/?l=bugtraq&m=90686250717719&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.cert.org/vendor_bulletins/VB-98.10.sco.mscreen

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party AdvisoryUS Government Resource

http://www.securityfocus.com/archive/1/10420

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.