CVE-2002-1998
published 2002-12-31CVE-2002-1998: Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to…
PriorityP430high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
2.52%
82.9th percentile
Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21).
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| sco | open_unix | — | — |
| sco | unixware | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat4.6MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-7qc8-cpph-66p8: Buffer overflow in rpc
ghsa_unreviewed·2022-05-03
CVE-2002-1998 [HIGH] GHSA-7qc8-cpph-66p8: Buffer overflow in rpc
Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21).
Red Hat
security flaw
vendor_redhat·2002-10-01·CVSS 4.6
CVE-2002-1165 [MEDIUM] security flaw
security flaw
Sendmail Consortium's Restricted Shell (SMRSH) in Sendmail 8.12.6, 8.11.6-15, and possibly other versions after 8.11 from 5/19/1998, allows attackers to bypass the intended restrictions of smrsh by inserting additional commands after (1) "||" sequences or (2) "/" characters, which are not properly filtered or verified.
No detection rules found.
ftp://stage.caldera.com/pub/security/openunix/CSSA-2002-SCO.12/CSSA-2002-SCO.12.txthttp://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-01/0127.htmlhttp://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-01/0129.htmlhttp://www.iss.net/security_center/static/8597.phpftp://stage.caldera.com/pub/security/openunix/CSSA-2002-SCO.12/CSSA-2002-SCO.12.txthttp://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-01/0127.htmlhttp://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-01/0129.htmlhttp://www.iss.net/security_center/static/8597.php
2002-12-31
Published