CVE-2002-0678

CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.

Published: Jul 23, 2002
Updated: Apr 13, 2023
CVE: CVE-2002-0678
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
sgi / irix	6.5.6	6.5.6.x
sgi / irix	5.3	5.3.x
sgi / irix	6.0.1	6.0.1.x
sgi / irix	6.5.1	6.5.1.x
sgi / irix	6.5.10	6.5.10.x
sgi / irix	6.1	6.1.x
xi_graphics / dextop	2.1	2.1.x
sgi / irix	6.5.12	6.5.12.x
caldera / unixware	7.0	7.0.x
sgi / irix	6.5.9	6.5.9.x
sgi / irix	6.4	6.4.x
caldera / unixware	7.1.0	7.1.0.x
sgi / irix	6.5.15	6.5.15.x
sgi / irix	6.5.3	6.5.3.x
sgi / irix	6.5.14	6.5.14.x
sgi / irix	6.5.8	6.5.8.x
sgi / irix	6.5.5	6.5.5.x
sgi / irix	5.2	5.2.x
sgi / irix	6.5.4	6.5.4.x
sgi / irix	6.5.11	6.5.11.x
sgi / irix	6.0	6.0.x
sgi / irix	6.3	6.3.x
sgi / irix	6.5.2	6.5.2.x
sgi / irix	6.5	6.5.x
sgi / irix	6.5.7	6.5.7.x
caldera / unixware	7.1.1	7.1.1.x
sgi / irix	6.2	6.2.x
sgi / irix	6.5.13	6.5.13.x
sgi / irix	6.5.16	6.5.16.x
hp / hp-ux	11.11	11.11.x
sun / sunos	5.7	5.7.x
compaq / tru64	4.0g	4.0g.x
sun / sunos	5.8	5.8.x
compaq / tru64	5.0a	5.0a.x
hp / hp-ux	11.00	11.00.x
compaq / tru64	4.0f	4.0f.x
hp / hp-ux	10.24	10.24.x
ibm / aix	4.3.3	4.3.3.x
caldera / openunix	8.0	8.0.x
sun / solaris	9.0	9.0.x
compaq / tru64	5.1a	5.1a.x
sun / sunos	5.5.1	5.5.1.x
hp / hp-ux	10.20	10.20.x
compaq / tru64	5.1	5.1.x
ibm / aix	5.1	5.1.x
hp / hp-ux	10.10	10.10.x
sun / solaris	2.6	2.6.x

Vulnerability Database

289,599

CVE-2002-0678