Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0105

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2002-0105
Last Modified 05 Sep 2008 04:27:11
Published 25 Mar 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-0105

Summary

CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable.

Vulnerable Systems

Application

  • Caldera Unixware 7.1.0


References

BID - 3818

XF - unixware-dtlogin-log-symlink(7864)

BUGTRAQ - 20020108 CDE bug in Unixware 7.1


Last Updated: 27 May 2016 10:36:46