13 matches found
CDE ToolTalk RPC Database Server Multiple Vulnerabilities
the CDE ToolTalk Database Server is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CDE ToolTalk RPC Database Server Multiple Vulnerabilities
This host is running the CDE ToolTalk Database Server and is prone to the multiple vulnerabilities. OpenVAS Vulnerability Test $Id: secpodtooltalkrpcdatabaseservermultvuln.nasl 7006 2017-08-25 11:51:20Z teissa $ CDE ToolTalk RPC Database Server Multiple Vulnerabilities Authors: Antu Sanadi...
AIX 5.1 : IY23846
The remote host is missing AIX Critical Security Patch number IY23846 SECURITY: Format string vulnerability in CDE ToolTalk server. You should install this patch for your system to be up-to-date. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. if ! definedfunc"bnrandom" exit0;...
Solaris 9 (sparc) : 112808-11
CDE 1.5: ToolTalk patch. Date this patch was last updated by Sun : Jul/06/10 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text in this plugin was extracted from the Oracle SunOS Patch Updates. include'deprecatednasllevel.inc'; include'compat.inc'; if description...
Multiple bugs in CDE ToolTalk
Incomplete input validation in different remote calls...
Advisory CA-2002-26 Buffer Overflow in CDE ToolTalk
-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2002-26 Buffer Overflow in CDE ToolTalk Original release date: August 12, 2002 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected Systems running CDE ToolTalk Overview The Common...
Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) vulnerable to buffer overflow via _TT_CREATE_FILE()
Overview The Common Desktop Environment CDE ToolTalk RPC database server contains a buffer overflow condition that could let an attacker execute arbitrary code or cause a denial of service on a vulnerable system. The ToolTalk RPC database server typically runs with root privileges. Description A...
CVE-2002-0677
CDE ToolTalk database server ttdbserver allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTHUNIX procedure call, which is used as a table index by the TTISCLOSE procedure...
CVE-2002-0677
CDE ToolTalk database server ttdbserver allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTHUNIX procedure call, which is used as a table index by the TTISCLOSE procedure...
Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) does not adequately validate file descriptor arguement to _TT_ISCLOSE()
Overview The Common Desktop Environment CDE ToolTalk RPC database server does not adequately validate a client-supplied argument, allowing attackers to overwrite certain locations in memory with zeros. This vulnerability could be exploited in a number of ways, potentially allowing attackers to:...
Advisory CA-2002-20 Multiple Vulnerabilities in CDE ToolTalk
-----BEGIN PGP SIGNED MESSAGE----- CERT Advisory CA-2002-20 Multiple Vulnerabilities in CDE ToolTalk Original release date: July 10, 2002 Last revised: -- Source: CERT/CC A complete revision history can be found at the end of this file. Systems Affected Systems running CDE ToolTalk Overview Two...
Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) does not adequately validate file operations
Overview The Common Desktop Environment CDE ToolTalk RPC database server does not adequately validate file operations and follows symbolic links, allowing a local attacker to overwrite any file that is writeable by the server. The ToolTalk RPC database server typically runs with root privileges...
Common Desktop Environment (CDE) ToolTalk RPC Server rpc.ttdbserverd contains format string vulnerability
Overview A vulnerability exists in CDE ToolTalk that may allow a remote attacker to execute arbitrary code with root privileges. Description Internet Security Systems ISS X-Force has discovered a format string vulnerability in the Common Desktop Environment CDE ToolTalk Remote Procedure Call RPC...