CVE-1999-1185

SCO mscreen - Buffer Overflow via Long TERM Entry in .mscreenrc File

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-1185. PoCs published by K2.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in SCO OpenServer's mscreen utility. It uses shellcode to spawn a shell by overflowing the TERM environment variable.

Description

Buffer overflow in SCO mscreen allows local users to gain root privileges via a long terminal entry (TERM) in the .mscreenrc file.

Exploits (1)

exploitdb WORKING POC VERIFIED

by K2 · clocalsco

https://www.exploit-db.com/exploits/261

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in SCO OpenServer's mscreen utility. It uses shellcode to spawn a shell by overflowing the TERM environment variable.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: SCO OpenServer mscreen (tested on 5.0.5)

No auth needed

Prerequisites: Access to the target system · Ability to execute the compiled binary

MITRE ATT&CK

T1059 - Command and Scripting Interpreter T1068 - Exploitation for Privilege Escalation

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/1379

Mailing List mailing-list x_refsource_bugtraq

http://marc.info/?l=bugtraq&m=90686250717719&w=2

Scores

EPSS 0.0083

EPSS Percentile 52.9%

Details

Status published

Products (6)

sco/cmw 3.0

sco/internet_faststart all_versions

sco/open_desktop 3.0

sco/openserver 3.0

sco/openserver 5.0

sco/openserver_enterprise_system 5.0.4p

Published Oct 06, 1998

Tracked Since Feb 18, 2026