VULHUB ™

SCO OpenServer 5 ships with several suid 'bin' executables used in printing- and email-related tasks. This includes rmail, a component of the MMDF mail system used to interpret incoming email received through uucp. 'rmail' contains a confirmed locally exploitable buffer overflow condition present in the handling of command-line parameters. If properly exploited, this can yield user 'bin' privileges to the attacker.

SCO OpenServer 5 ships with several suid 'bin' executables used in printing- and email-related tasks. This includes rmail, a component of the MMDF mail system used to interpret incoming email received through uucp. 'rmail' contains a confirmed locally exploitable buffer overflow condition present in the handling of command-line parameters. If properly exploited, this can yield user 'bin' privileges to the attacker.