VULHUB ™

The SCO UnixWare/Open UNIX ps utility is prone to a locally exploitable buffer overflow condition. This issue is due to insufficient bounds checking of arguments in command line options. While this utility is not installed setuid/setgid, it uses the procprivl(SETPRV,pm_work(P_MACREAD) function, which may allow for arbitrary code execution with elevated privileges.

The SCO UnixWare/Open UNIX ps utility is prone to a locally exploitable buffer overflow condition. This issue is due to insufficient bounds checking of arguments in command line options. While this utility is not installed setuid/setgid, it uses the procprivl(SETPRV,pm_work(P_MACREAD) function, which may allow for arbitrary code execution with elevated privileges.