Vulnerabilities > Caldera
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2002-07-23 | CVE-2002-0678 | Symbolic Link vulnerability in Multiple Vendor CDE ToolTalk Database Server CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure. | 7.2 |
| 2002-07-23 | CVE-2002-0677 | CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure. | 7.5 |
| 2002-05-31 | CVE-2002-0311 | Unspecified vulnerability in Caldera Openunix and Unixware Vulnerability in webtop in UnixWare 7.1.1 and Open UNIX 8.0.0 allows local and possibly remote attackers to gain root privileges via shell metacharacters in the -c argument for (1) in scoadminreg.cgi or (2) service_action.cgi. | 10.0 |
| 2002-05-29 | CVE-2002-0246 | Unspecified vulnerability in Caldera Unixware 7.1.1 Format string vulnerability in the message catalog library functions in UnixWare 7.1.1 allows local users to gain privileges by modifying the LC_MESSAGE environment variable to read other message catalogs containing format strings from setuid programs such as vxprint. | 7.2 |
| 2002-05-01 | CVE-1999-1570 | Unspecified vulnerability in Caldera Openserver 5.0.5 Buffer overflow in sar for OpenServer 5.0.5 allows local users to gain root privileges via a long -o parameter. | 7.2 |
| 2002-03-25 | CVE-2002-0105 | Unspecified vulnerability in Caldera Unixware 7.1.0 CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable. | 7.2 |
| 2002-03-15 | CVE-2002-0164 | Unspecified vulnerability in Caldera Openlinux Server and Openlinux Workstation Vulnerability in the MIT-SHM extension of the X server on Linux (XFree86) 4.2.1 and earlier allows local users to read and write arbitrary shared memory, possibly to cause a denial of service or gain privileges. | 4.6 |
| 2002-02-27 | CVE-2002-0004 | Heap Overflow vulnerability in AT Maliciously Formatted Time Heap corruption vulnerability in the "at" program allows local users to execute arbitrary code via a malformed execution time, which causes at to free the same memory twice. | 7.2 |
| 2001-12-31 | CVE-2001-1577 | Unspecified vulnerability in Caldera Openunix and Unixware Unknown vulnerability in CDE in Caldera OpenUnix 7.1.0, 7.1.1, and 8.0 allows an xterm session to gain privileges when the session is reused. | 7.5 |
| 2001-12-31 | CVE-2001-1576 | Local Security vulnerability in Caldera Unixware 7 Buffer overflow in cron in Caldera UnixWare 7 allows local users to execute arbitrary code via a command line argument. | 4.6 |