CyberSec.Space Logo
Back to CVE Browser

CVE-2002-0678

HIGH
7.2
CVSS Severity Score
EPSS Score0.0440%
EPSS Percentile5.92th
PublishedJul 23, 2002
Last ModifiedApr 16, 2026

Vulnerability Description

CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.

Affected Platforms (CPE)

πŸ“¦
Caldera

Unixware

= 7.0
πŸ“¦
Caldera

Unixware

= 7.1.0
πŸ“¦
Caldera

Unixware

= 7.1.1
πŸ“¦
Xi Graphics

Dextop

= 2.1
πŸ’»
Sgi

Irix

= 5.2
πŸ’»
Sgi

Irix

= 5.3
πŸ’»
Sgi

Irix

= 6.0
πŸ’»
Sgi

Irix

= 6.0.1
πŸ’»
Sgi

Irix

= 6.1
πŸ’»
Sgi

Irix

= 6.2
πŸ’»
Sgi

Irix

= 6.3
πŸ’»
Sgi

Irix

= 6.4
πŸ’»
Sgi

Irix

= 6.5
πŸ’»
Sgi

Irix

= 6.5.1
πŸ’»
Sgi

Irix

= 6.5.2
πŸ’»
Sgi

Irix

= 6.5.3
πŸ’»
Sgi

Irix

= 6.5.4
πŸ’»
Sgi

Irix

= 6.5.5
πŸ’»
Sgi

Irix

= 6.5.6
πŸ’»
Sgi

Irix

= 6.5.7
πŸ’»
Sgi

Irix

= 6.5.8
πŸ’»
Sgi

Irix

= 6.5.9
πŸ’»
Sgi

Irix

= 6.5.10
πŸ’»
Sgi

Irix

= 6.5.11
πŸ’»
Sgi

Irix

= 6.5.12
πŸ’»
Sgi

Irix

= 6.5.13
πŸ’»
Sgi

Irix

= 6.5.14
πŸ’»
Sgi

Irix

= 6.5.15
πŸ’»
Sgi

Irix

= 6.5.16
πŸ’»
Caldera

Openunix

= 8.0
πŸ’»
Compaq

Tru64

= 4.0f
πŸ’»
Compaq

Tru64

= 4.0g
πŸ’»
Compaq

Tru64

= 5.0a
πŸ’»
Compaq

Tru64

= 5.1
πŸ’»
Compaq

Tru64

= 5.1a
πŸ’»
Hp

Hp Ux

= 10.10
πŸ’»
Hp

Hp Ux

= 10.20
πŸ’»
Hp

Hp Ux

= 10.24
πŸ’»
Hp

Hp Ux

= 11.00
πŸ’»
Hp

Hp Ux

= 11.11
πŸ’»
Ibm

Aix

= 4.3.3
πŸ’»
Ibm

Aix

= 5.1
πŸ’»
Sun

Solaris

= 2.6
πŸ’»
Sun

Solaris

= 9.0
πŸ’»
Sun

Sunos

= 5.5.1
πŸ’»
Sun

Sunos

= 5.7
πŸ’»
Sun

Sunos

= 5.8

References & Advisories

πŸ”— ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt
πŸ”— ftp://patches.sgi.com/support/free/security/advisories/20021101-01-P
πŸ”— http://archives.neohapsis.com/archives/aix/2002-q3/0002.html
πŸ”— http://marc.info/?l=bugtraq&m=102635906423617&w=2
πŸ”— http://www.cert.org/advisories/CA-2002-20.html
πŸ”— http://www.iss.net/security_center/static/9527.php
πŸ”— http://www.kb.cert.org/vuls/id/299816
πŸ”— http://www.securityfocus.com/bid/5083

Related Vulnerabilities

CVE-2000-000310.0

Buffer overflow in UnixWare rtpm program allows local users to gain privileges via a long environmental variable.

CVE-2000-002610.0

Buffer overflow in UnixWare i2odialogd daemon allows remote attackers to gain root access via a long username/password authorizati...

CVE-1999-083610.0

UnixWare uidadmin allows local users to modify arbitrary files via a symlink attack.

CVE-2000-030810.0

Insecure file permissions for Netscape FastTrack Server 2.x, Enterprise Server 2.0, and Proxy Server 2.5 in SCO UnixWare 7.0.x and...