Lucene search

[email protected]CVE-2002-0677

HistoryJul 23, 2002 - 4:00 a.m.

CVE-2002-0677

2002-07-2304:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve

cde

tooltalk

ttdbserver

remote attackers

memory overwrite

7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.4%

JSON

CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.

CPENameOperatorVersion
sgi:irixsgi irixeq6.5.6
sgi:irixsgi irixeq5.3
sgi:irixsgi irixeq6.0.1
sgi:irixsgi irixeq6.5.1
sgi:irixsgi irixeq6.5.10
sgi:irixsgi irixeq6.1
xi_graphics:dextopxi graphics dextopeq2.1
sgi:irixsgi irixeq6.5.12
caldera:unixwarecaldera unixwareeq7.1_.0
sgi:irixsgi irixeq6.5.9

CPE	Name	Operator	Version
sgi:irix	sgi irix	eq	6.5.6
sgi:irix	sgi irix	eq	5.3
sgi:irix	sgi irix	eq	6.0.1
sgi:irix	sgi irix	eq	6.5.1
sgi:irix	sgi irix	eq	6.5.10
sgi:irix	sgi irix	eq	6.1
xi_graphics:dextop	xi graphics dextop	eq	2.1
sgi:irix	sgi irix	eq	6.5.12
caldera:unixware	caldera unixware	eq	7.1_.0
sgi:irix	sgi irix	eq	6.5.9

Rows per page:

1-10 of 461

References

ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt

ftp://patches.sgi.com/support/free/security/advisories/20021102-02-P

marc.info/?l=bugtraq&m=102635906423617&w=2

www.cert.org/advisories/CA-2002-20.html

www.kb.cert.org/vuls/id/975403

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1099

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A91

7 High

AI Score

Confidence

Low

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.008 Low

EPSS

Percentile

81.4%

JSON

Related for CVE-2002-0677

cert1 securityvulns2 openvas2 coresecurity1