CVE-2002-0105

3 documents3 sources

Severity

7.2HIGH

EPSS

0.2%

top 64.22%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Caldera Unixware

Timeline

PublishedMar 25

Latest updateApr 30

Description

CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDcaldera/unixware7.1.0

🔴Vulnerability Details

GHSA

GHSA-wv56-vjrw-54p2: CDE dtlogin in Caldera UnixWare 7↗2022-04-30

▶

CVEList

CVE-2002-0105: CDE dtlogin in Caldera UnixWare 7↗2002-03-15

▶