Description
CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.
Products
- Caldera UnixWare 7.1.1
- Caldera UnixWare 7.1_.0
- Caldera UnixWare 7
- Xi Graphics Dextop 2.1
- Caldera OpenUNIX 8.0
- Compaq Tru64 4.0f
- Compaq Tru64 4.0g
- Compaq Tru64 5.0a
- Compaq Tru64 5.1
- Compaq Tru64 5.1a
- HP HP-UX 10.10
- HP HP-UX 10.20
- HP HP-UX 10.24
- HP-UX 11.00
- HP-UX 11.11
- IBM AIX 4.3.3
- IBM AIX 5.1
- SGI IRIX 5.2
- SGI IRIX 5.3
- SGI IRIX 5.3 XFS
- SGI IRIX 6.0.1
- SGI IRIX 6.0.1 XFS
- SGI IRIX 6.0
- SGI IRIX 6.1
- SGI IRIX 6.2
- SGI IRIX 6.3
- SGI IRIX 6.4
- SGI IRIX 6.5.10
- SGI IRIX 6.5.11
- SGI IRIX 6.5.12
- SGI IRIX 6.5.13
- SGI IRIX 6.5.14
- SGI IRIX 6.5.15
- SGI IRIX 6.5.16
- SGI IRIX 6.5.1
- SGI IRIX 6.5.2
- SGI IRIX 6.5.3
- SGI IRIX 6.5.4
- SGI IRIX 6.5.5
- SGI IRIX 6.5.6
- SGI IRIX 6.5.7
- SGI IRIX 6.5.8
- SGI IRIX 6.5.9
- SGI IRIX 6.5
- Sun Solaris 2.6
- Sun Solaris 2.6 HW3
- Sun Solaris 2.6 x86HW3
- Sun Solaris 2.6 HW5
- Sun Solaris 2.6 x86HW5
- Sun Microsystems Solaris 2.5.1
- Sun Microsystems Solaris 7
- Sun SunOS (Solaris 8) 5.8
Questions to Ask Vendors
- Can you confirm whether your systems are affected by CVE-2002-0677, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2002-0677 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions
- Check out the advisory links provided below.
References