CVE-2002-0677

N/A Unknown
Published: July 23, 2002 Modified: April 16, 2026
View on NVD

Description

CDE ToolTalk database server (ttdbserver) allows remote attackers to overwrite arbitrary memory locations with a zero, and possibly gain privileges, via a file descriptor argument in an AUTH_UNIX procedure call, which is used as a table index by the _TT_ISCLOSE procedure.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt
Source: cve@mitre.org
ftp://patches.sgi.com/support/free/security/advisories/20021102-02-P
Source: cve@mitre.org
http://marc.info/?l=bugtraq&m=102635906423617&w=2
Source: cve@mitre.org
http://www.cert.org/advisories/CA-2002-20.html
Source: cve@mitre.org
Patch Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/975403
Source: cve@mitre.org
Patch Third Party Advisory US Government Resource
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1099
Source: cve@mitre.org
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15
Source: cve@mitre.org
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A91
Source: cve@mitre.org
ftp://ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.28/CSSA-2002-SCO.28.txt
Source: af854a3a-2127-422b-91ae-364da2661108
ftp://patches.sgi.com/support/free/security/advisories/20021102-02-P
Source: af854a3a-2127-422b-91ae-364da2661108
http://marc.info/?l=bugtraq&m=102635906423617&w=2
Source: af854a3a-2127-422b-91ae-364da2661108
http://www.cert.org/advisories/CA-2002-20.html
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/975403
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Third Party Advisory US Government Resource
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1099
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15
Source: af854a3a-2127-422b-91ae-364da2661108
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A91
Source: af854a3a-2127-422b-91ae-364da2661108

16 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
14.9%
95th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

xi_graphics sgi compaq caldera sun ibm hp