Back
CVE-2000-1014
Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7 allows remote attackers to execute arbitrary commands via format characters in the queryText parameter.
Published: Dec 11, 2000
Modified: Apr 16, 2026
CVSS Metrics
Affected Products (1)
| Vendor | Product | Version |
|---|---|---|
| sco | unixware | 7.0 |
GitHub Security Advisory GHSA-m5qj-69g5-cc43
Format string vulnerability in the search97.cgi CGI script in SCO help http server for Unixware 7...
References (8)
- http://archives.neohapsis.com/archives/bugtraq/2000-09/0325.html
- http://www.osvdb.org/3240
- http://www.securityfocus.com/bid/1717 Exploit, Patch, Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5291
- http://archives.neohapsis.com/archives/bugtraq/2000-09/0325.html
- http://www.osvdb.org/3240
- http://www.securityfocus.com/bid/1717 Exploit, Patch, Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/5291
Risk Scores
CVSS Score
7.5 / 10
EPSS Score
8.70%
Top 7% most likely to be exploited
Threat Score
32.6 / 100
Data Sources
NVD
EPSS
GitHub