• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

SCO UnixWare/OpenServer Unspecified CHRoot Breakout Vulnerability

Solution:
The vendor has released an advisory (SCOSA-2005.2) and fixes to address this vulnerability for UnixWare.

A fix for UnixWare 7.1.3 is included in UnixWare Release 7.1.3 Maintenance Pack 4 or later and a fix for UnixWare 7.1.1 is available in UnixWare Release 7.1.1 Maintenance Pack 5 or later

The vendor has released an advisory (SCOSA-2005.22) and fixes to address this vulnerability for OpenServer.

Customers are advised to see the referenced advisories for further information in regards to obtaining and applying appropriate fixes.


SCO Open Server 5.0.6

• SCO VOL.000.000 for SCOSA-2005.22
  ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.22

SCO Open Server 5.0.7

• SCO VOL.000.000 for SCOSA-2005.22
  ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.22

SCO Unixware 7.1.4

• SCO erg712629c.pkg.Z
  ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2005.2