Security updates for SCO OpenServer
Security updates for SCO OpenServer
Madrid, January 6, 2006 - SCO has published five security advisories reporting several vulnerabilities that affect versions 5.0.6, 5.0.7 and 6.0.0 of SCO OpenServer. They also announce the availability of the updates that fix them.
Below is a summary of the security flaws detected in OpenServer:
- Denial of Service in BIND (Berkeley Internet Name Daemon), which lies in a buffer overflow that can be triggered remotely. This vulnerability could allow an attacker to stop the resolution of domain names. It affects versions 5.0.6, 5.0.7 and 6.0.0.
- Execution of arbitrary code through a buffer overflow in the libTIFF library that processes TIFF image files. It could compromise the affected system if a specially-crafted TIFF image is sent and opened with an application that uses this library. It affects versions 5.0.6, 5.0.7 and 6.0.0.
- Multiple vulnerabilities in the handling and decompression of ´cpio´ files that could allow file permissions to be modified and new arbitrary files to be written using a directory traversal vulnerability. It affects versions 5.0.7 and 6.0.0.
- Denial of Service vulnerability based in ICMP packages, which could be exploited remotely to degrade or end TCP connections and deny service to legitimate users. It affects versions 5.0.6 and 5.0.7.
- Integer overflow in the LibXpm library that allows arbitrary code to run when processing a specially-crafted image. It affects versions 5.0.6, 5.0.7 and 6.0.0.
The security advisories with full details of these vulnerabilities, the versions affected and instructions for downloading and installing the updates are available at: http://www.sco.com/support/security/2006.html#OpenServer
Oxygen3 24h-365d
by Panda Software
- Microsoft revamps Bing to include interactive social sidebar
The three-column interface also includes a ´snapshot´ for more direct interaction with products and places.
- Adobe Creative Cloud Now Available
Two New Touch Apps for iOS and Adobe Muse Also Shipping
- Acer G6 series - Super-slim design, inspiring performance
- Come Explore the VIA Smart Ecosystem at Computex 2012
- HP tries to beat ultrabook pricing with thin-and-light Sleekbooks
- MasterCard´s PayPass Wallet will span online, mobile, in-store shopping
- Google infringed Java copyrights in Android, jury finds
- After false alarm, no verdict Friday in Oracle Google
- Lenovo building industrial center to develop tablets, smartphones
- Facebook´s valuation for IPO will be lower than initially expected
Member of IVSZ
Member of SZEK
Acer Affinity Gold partner
Dell Registered Partner
OKI System Shinrai Partner
XEROX Viszonteladó
APC megbízható szállító
EATON Authorized Partner
Cisco partner
Symantec Software Partner
ESET Partner
FUJITSU partner
LENOVO Premium Partner
IBM Business Partner
PARTNERS: Computerworld.hu | GameStar.hu | PCWorld.hu | SG.hu | PC Guru | Hitel