Total vulnerabilities in the database
CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.
| Software | From | Fixed in |
|---|---|---|
| sgi / irix | 6.5.6 | 6.5.6.x |
| sgi / irix | 5.3 | 5.3.x |
| sgi / irix | 6.0.1 | 6.0.1.x |
| sgi / irix | 6.5.1 | 6.5.1.x |
| sgi / irix | 6.5.10 | 6.5.10.x |
| sgi / irix | 6.1 | 6.1.x |
| xi_graphics / dextop | 2.1 | 2.1.x |
| sgi / irix | 6.5.12 | 6.5.12.x |
| caldera / unixware | 7.1_.0 | 7.1_.0.x |
| sgi / irix | 6.5.9 | 6.5.9.x |
| sgi / irix | 6.4 | 6.4.x |
| sgi / irix | 6.5.15 | 6.5.15.x |
| caldera / unixware | 7 | 7.x |
| sgi / irix | 6.5.3 | 6.5.3.x |
| sgi / irix | 6.5.14 | 6.5.14.x |
| sgi / irix | 6.5.8 | 6.5.8.x |
| sgi / irix | 6.5.5 | 6.5.5.x |
| sgi / irix | 5.2 | 5.2.x |
| sgi / irix | 6.5.4 | 6.5.4.x |
| sgi / irix | 6.5.11 | 6.5.11.x |
| sgi / irix | 6.0 | 6.0.x |
| sgi / irix | 6.3 | 6.3.x |
| sgi / irix | 6.5.2 | 6.5.2.x |
| sgi / irix | 6.5 | 6.5.x |
| sgi / irix | 6.5.7 | 6.5.7.x |
| caldera / unixware | 7.1.1 | 7.1.1.x |
| sgi / irix | 6.2 | 6.2.x |
| sgi / irix | 6.5.13 | 6.5.13.x |
| sgi / irix | 6.5.16 | 6.5.16.x |
| hp / hp-ux | 11.11 | 11.11.x |
| sun / sunos | 5.7 | 5.7.x |
| compaq / tru64 | 4.0g | 4.0g.x |
| sun / sunos | 5.8 | 5.8.x |
| compaq / tru64 | 5.0a | 5.0a.x |
| hp / hp-ux | 11.00 | 11.00.x |
| compaq / tru64 | 4.0f | 4.0f.x |
| hp / hp-ux | 10.24 | 10.24.x |
| ibm / aix | 4.3.3 | 4.3.3.x |
| caldera / openunix | 8.0 | 8.0.x |
| compaq / tru64 | 5.1a | 5.1a.x |
| sun / sunos | 5.5.1 | 5.5.1.x |
| hp / hp-ux | 10.20 | 10.20.x |
| compaq / tru64 | 5.1 | 5.1.x |
| ibm / aix | 5.1 | 5.1.x |
| hp / hp-ux | 10.10 | 10.10.x |
| sun / solaris | 2.6 | 2.6.x |