CVE-2002-0517

Summary

CVE	CVE-2002-0517
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2002-08-12 04:00:00 UTC
Updated	2008-09-05 20:28:00 UTC
Description	Buffer overflow in X11 library (libX11) on Caldera Open UNIX 8.0.0, UnixWare 7.1.1, and possibly other operating systems, allows local users to gain root privileges via a long -xrm argument to programs such as (1) dtterm or (2) xterm.

Risk And Classification

Problem Types: NVD-CWE-Other

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Caldera	Openunix	8.0	All	All	All
Operating System	Caldera	Openunix	8.0	All	All	All
Application	Caldera	Unixware	7.1.1	All	All	All
Application	Caldera	Unixware	7.1.1	All	All	All

References

Reference	Source	Link	Tags
CERT/CC Vulnerability Note VU#169059	CERT-VN	www.kb.cert.org	US Government Resource
ISS X-Force Database: unixware-openunix-dtterm-bo (7282): Caldera UnixWare and OpenUnix dtterm command buffer overflow	XF	www.iss.net	Patch, Vendor Advisory
SecurityFocus HOME Mailing List: BugTraq	BUGTRAQ	www.securityfocus.com	Vendor Advisory
CSSA-2002-SCO.15	CALDERA	stage.caldera.com
Neohapsis Archives - Bugtraq - xterm exploit in Unixware 7.0.1 - From [email protected]	BUGTRAQ	archives.neohapsis.com
ISS X-Force Database: x11-xrm-bo (8828): X11 library -xrm option buffer overflow	XF	www.iss.net
Caldera X11 Library -xrm Buffer Overflow Vulnerability	BID	www.securityfocus.com	Patch, Vendor Advisory
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.