CVE-2002-1199
published 2002-10-28CVE-2002-1199: The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal…
PriorityP418medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
2.24%
80.6th percentile
The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| caldera | openlinux | — | — |
| caldera | openlinux | — | — |
| caldera | openlinux | — | — |
| sco | openserver | — | — |
| sco | openserver | — | — |
| sco | openserver | — | — |
| sun | solaris | — | — |
| sun | sunos | — | — |
| sun | sunos | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40http://marc.info/?l=bugtraq&m=103426842025029&w=2http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47903http://www.iss.net/security_center/static/10329.phphttp://www.kb.cert.org/vuls/id/538033http://www.securityfocus.com/bid/5937https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2423ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40http://marc.info/?l=bugtraq&m=103426842025029&w=2http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47903http://www.iss.net/security_center/static/10329.phphttp://www.kb.cert.org/vuls/id/538033http://www.securityfocus.com/bid/5937https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2423
2002-10-28
Published