Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0884

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0884
Last Modified 05 Sep 2008 04:29:12
Published 04 Oct 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0884

Summary

Multiple format string vulnerabilities in in.rarpd (ARP server) on Solaris, Caldera UnixWare and Open UNIX, and possibly other operating systems, allows remote attackers to execute arbitrary code via format strings that are not properly handled in the functions (1) syserr and (2) error.

Vulnerable Systems

Operating System

  • Caldera Openunix 8.0

  • Sun Solaris 7.0

  • Sun Solaris 8.0

Application

  • Caldera Unixware 7.1.1


References

BID - 4791

XF - solaris-inrarpd-code-execution(9150)

BUGTRAQ - 20020522 [DER Adv #7] - Multiple Vulnerabilities in solaris in.rarpd

VULNWATCH - 20020521 [VulnWatch] [DER Adv #7] - Multiple Vulnerabilities in solaris in.rarpd

CALDERA - CSSA-2002-SCO.29


Last Updated: 27 May 2016 10:37:06