CVE-2002-0884

3 documents3 sources

Severity

7.5HIGH

EPSS

2.2%

top 15.72%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Caldera Openunix Caldera Unixware SUN Sunos

Timeline

PublishedOct 4

Latest updateMay 3

Description

Multiple format string vulnerabilities in in.rarpd (ARP server) on Solaris, Caldera UnixWare and Open UNIX, and possibly other operating systems, allows remote attackers to execute arbitrary code via format strings that are not properly handled in the functions (1) syserr and (2) error.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages3 packages

▶NVDcaldera/openunix8.0

▶NVDcaldera/unixware7.1.1

▶NVDsun/sunos5.7, 5.8+1

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-8vfq-jjgr-56f7: Multiple format string vulnerabilities in in↗2022-05-03

▶

CVEList

CVE-2002-0884: Multiple format string vulnerabilities in in↗2002-08-31

▶