CVE Vulnerabilities

CVE-2002-0678

Published: Jul 23, 2002 | Modified: Oct 30, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.

Affected Software

Name Vendor Start Version End Version
Unixware Caldera 7.0 7.0
Unixware Caldera 7.1.0 7.1.0
Unixware Caldera 7.1.1 7.1.1
Dextop Xi_graphics 2.1 2.1
Irix Sgi 5.2 5.2
Irix Sgi 5.3 5.3
Irix Sgi 6.0 6.0
Irix Sgi 6.0.1 6.0.1
Irix Sgi 6.1 6.1
Irix Sgi 6.2 6.2
Irix Sgi 6.3 6.3
Irix Sgi 6.4 6.4
Irix Sgi 6.5 6.5
Irix Sgi 6.5.1 6.5.1
Irix Sgi 6.5.2 6.5.2
Irix Sgi 6.5.3 6.5.3
Irix Sgi 6.5.4 6.5.4
Irix Sgi 6.5.5 6.5.5
Irix Sgi 6.5.6 6.5.6
Irix Sgi 6.5.7 6.5.7
Irix Sgi 6.5.8 6.5.8
Irix Sgi 6.5.9 6.5.9
Irix Sgi 6.5.10 6.5.10
Irix Sgi 6.5.11 6.5.11
Irix Sgi 6.5.12 6.5.12
Irix Sgi 6.5.13 6.5.13
Irix Sgi 6.5.14 6.5.14
Irix Sgi 6.5.15 6.5.15
Irix Sgi 6.5.16 6.5.16

References