CVE-2002-0677

2002-07-23T04:00:00
ID CVE-2002-0677
Type cve
Reporter cve@mitre.org
Modified 2018-10-30T16:26:00

Description

CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.