Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2003-0742

SCO Internet Manager (mana) allows local users to execute arbitrary programs by setting the REMOTE_ADDR environment variable to cause menu.mana to run as if it were called from ncsa_httpd, then modifying the PATH environment variable to point to a malicious "hostname" program.

  • Published: Oct 6, 2003
  • Updated: Apr 13, 2023
  • CVE: CVE-2003-0742
  • Severity: High
  • Exploit:

CVSS v2:

  • Severity: High
  • Score: 7.2
  • AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Software From Fixed in
sco / openserver 5.0.7 5.0.7.x
sco / openserver 5.0.5 5.0.5.x
sco / openserver 5.0.6 5.0.6.x