SCO OpenServer accept Buffer Overflow Vulnerability

SCO OpenServer accept Buffer Overflow Vulnerability

SCO OpenServer 5.0.6 (and possibly earlier versions) ships with several suid 'bin' executables used in printer administration and related tasks.

This includes accept, a component used to receive and queue print requests submitted to a printserver.

'accept' contains a confirmed locally exploitable buffer overflow condition present in the handling of command-line parameters.

If properly exploited, this can yield user 'bin' privileges to the attacker.