5

CVE-2002-1199

The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CalderaOpenlinux Version2.2
CalderaOpenlinux Version2.3
CalderaOpenlinux Version2.4
ScoOpenserver Version5.0.5
ScoOpenserver Version5.0.6
ScoOpenserver Version5.0.6a
SunSolaris Version9.0 Editionsparc
SunSunos Version5.7
SunSunos Version5.8
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 2.14% 0.826
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 5 10 2.9
AV:N/AC:L/Au:N/C:P/I:N/A:N
http://www.kb.cert.org/vuls/id/538033
Third Party Advisory
US Government Resource