Vulnerabilities > CVE-2002-0105 - Unspecified vulnerability in Caldera Unixware 7.1.0

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

caldera

NVD

Published: 2002-03-25

Updated: 2016-10-18

Summary

CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable.

Vulnerable Configurations

Part	Description	Count
Application	Caldera Caldera Unixware 7.1.0	1

References

http://marc.info/?l=bugtraq&m=101060400802428&w=2
http://www.iss.net/security_center/static/7864.php
http://www.securityfocus.com/bid/3818