3 matches found
CVE-1999-0350
The vulnerability CVE-1999-0350 affects ClearCase’s db_loader, where a race condition can allow local users to obtain root privileges by setting SUID bits. The Red Hat and CVE records confirm the issue and describe the root cause as a race in the db_loader program; exploitation details or specifi...
CVE-2001-0855
CVE-2001-0855 details a buffer overflow in db_loader of ClearCase 4.2 and earlier, exploitable by a long TERM environment variable to gain root privileges locally. Affected software: ClearCase (db_loader) on version 4.2 and earlier. Root cause: buffer overflow triggered by unbounded TERM value. I...
CVE-2002-1322
CVE-2002-1322 affects Rational ClearCase 4.1 and 2002.05 (and possibly other versions) and allows remote attackers to cause a denial of service (crash) by sending certain packets to TCP/UDP port 371 (e.g., via nmap). The underlying details specify a network-based DoS vector to a specific service ...