CVE
- Id
- 5068
- CVE No.
- CVE-2002-0678
- Status
- Entry
- Description
- CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.
- Phase
- Votes
- Comments
Related CVE References
| Id | CVE Id | CVE No. | Reference | Actions |
|---|---|---|---|---|
| 26565 | 5068 | CVE-2002-0678 | BUGTRAQ:20020710 [CORE-20020528] Multiple vulnerabilities in ToolTalk Database server | View |
| 26566 | 5068 | CVE-2002-0678 | URL:http://marc.info/?l=bugtraq&m=102635906423617&w=2 | View |
| 26567 | 5068 | CVE-2002-0678 | CERT:CA-2002-20 | View |
| 26568 | 5068 | CVE-2002-0678 | URL:http://www.cert.org/advisories/CA-2002-20.html | View |
| 26569 | 5068 | CVE-2002-0678 | CERT-VN:VU#299816 | View |
| 26570 | 5068 | CVE-2002-0678 | URL:http://www.kb.cert.org/vuls/id/299816 | View |
| 26571 | 5068 | CVE-2002-0678 | HP:HPSBUX0207-199 | View |
| 26572 | 5068 | CVE-2002-0678 | URL:http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0207-199 | View |
| 26573 | 5068 | CVE-2002-0678 | AIXAPAR:IY32368 | View |
| 26574 | 5068 | CVE-2002-0678 | URL:http://archives.neohapsis.com/archives/aix/2002-q3/0002.html | View |
| 26575 | 5068 | CVE-2002-0678 | AIXAPAR:IY32370 | View |
| 26576 | 5068 | CVE-2002-0678 | URL:http://archives.neohapsis.com/archives/aix/2002-q3/0002.html | View |
| 26577 | 5068 | CVE-2002-0678 | CALDERA:CSSA-2002-SCO.28 | View |
| 26578 | 5068 | CVE-2002-0678 | URL:ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt | View |
| 26579 | 5068 | CVE-2002-0678 | SGI:20021101-01-P | View |
| 26580 | 5068 | CVE-2002-0678 | URL:ftp://patches.sgi.com/support/free/security/advisories/20021101-01-P | View |
| 26581 | 5068 | CVE-2002-0678 | XF:tooltalk-ttdbserverd-tttransaction-symlink(9527) | View |
| 26582 | 5068 | CVE-2002-0678 | URL:http://www.iss.net/security_center/static/9527.php | View |
| 26583 | 5068 | CVE-2002-0678 | BID:5083 | View |
| 26584 | 5068 | CVE-2002-0678 | URL:http://www.securityfocus.com/bid/5083 | View |
| 26585 | 5068 | CVE-2002-0678 | OVAL:oval:org.mitre.oval:def:175 | View |
| 26586 | 5068 | CVE-2002-0678 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:175 | View |
| 26587 | 5068 | CVE-2002-0678 | OVAL:oval:org.mitre.oval:def:2770 | View |
| 26588 | 5068 | CVE-2002-0678 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2770 | View |
| 26589 | 5068 | CVE-2002-0678 | OVAL:oval:org.mitre.oval:def:80 | View |
Related JVN
| Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
|---|---|---|---|---|---|---|---|---|---|
| 63830 | JVNDB-2002-000157 | CDE ToolTalk の rpc.ttdbserverd における任意のファイルを上書きされる脆弱性 | CDE ToolTalk には、TT_TRANSACTION プロシージャがログファイルを作成および書き込む場合に、ファイルのシンボリックリンクチェックが不適切であるため、ファイルを上書きされる脆弱性が存在します。 | CVE-2002-0678 | 5068 | 7.2 | http://jvndb.jvn.jp/ja/contents/2002/JVNDB-2002-000157.html | View |
