Description
Buffer overflow in Common Desktop Environment (CDE) ToolTalk RPC database server (rpc.ttdbserverd) allows remote attackers to execute arbitrary code via an argument to the _TT_CREATE_FILE procedure.
Affected products
- caldera / openunix8.0 – 8.0
- caldera / unixware7.1.0 – 7.1.0
- caldera / unixware7.1.1 – 7.1.1
- caldera / unixware7.0 – 7.0
- compaq / tru645.1a – 5.1a
- compaq / tru645.1 – 5.1
- compaq / tru644.0f – 4.0f
- compaq / tru644.0g – 4.0g
- compaq / tru645.0a – 5.0a
- HP / hp-ux10.20 – 10.20
- HP / hp-ux10.10 – 10.10
- HP / hp-ux10.24 – 10.24
- HP / hp-ux11.00 – 11.00
- HP / hp-ux11.11 – 11.11
- ibm / aix4.3.3 – 4.3.3
- ibm / aix5.1 – 5.1
- sun / solaris9.0 – 9.0
- sun / solaris2.6 – 2.6
- sun / sunos5.7 – 5.7
- sun / sunos5.8 – 5.8
- sun / sunos5.5.1 – 5.5.1
- xi_graphics / dextop2.1 – 2.1
References
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A177
- MISChttp://www.iss.net/security_center/static/9822.php
- MAILING_LISThttp://marc.info/?l=bugtraq&m=102917002523536&w=2
- MISChttp://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX0207-199
- MISChttp://www.securityfocus.com/bid/5444
- MISChttp://www-1.ibm.com/support/search.wss?rs=0&q=IY32792&apar=only
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A192
- MISChttp://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F46366&zone_32=category%3Asecurity
- VENDOR_ADVISORYhttp://www.cert.org/advisories/CA-2002-26.html
- MISChttp://www-1.ibm.com/support/search.wss?rs=0&q=IY32793&apar=only
- MISChttp://www.kb.cert.org/vuls/id/387387