• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

SCO OpenServer StartX Weak XHost Permissions Vulnerability

Solution:
SCO have released an advisory (SCOSA-2004.5) and fixes to address this issue. Customers are advised to see the referenced advisory for further details regarding obtaining and applying appropriate fixes. Fixed binaries were not observed on the SCO ftp server at the time of writing.


SCO Open Server 5.0.5

• SCO Fixed Binaries For OpenServer 5.0.5
  ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2004.5


• SCO Fixed Binaries For OpenServer 5.0.6
  ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2004.5

SCO Open Server 5.0.6

• SCO Fixed Binaries For OpenServer 5.0.6
  ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2004.5

SCO Open Server 5.0.7

• SCO Fixed Binaries For OpenServer 5.0.7
  ftp://ftp.sco.com/pub/updates/UnixWare/SCOSA-2004.5