Vulnerabilities

CVE-2002-0677

by Fred · 12/07/2002

CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.

Date published : 2002-07-12

http://marc.info/?l=bugtraq&m=102635906423617&w=2

ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt

Similar

Tags: Cybersecurity Alert