CVE-2002-0887

Name of the Vulnerable Software and Affected Versions: scoadmin for Caldera/SCO OpenServer versions 5.0.5 through 5.0.6

Description: The issue allows local users to overwrite arbitrary files via a symlink attack on temporary files. This can be demonstrated using log files.

Recommendations: For versions 5.0.5 and 5.0.6, consider restricting access to the scoadmin utility until a fix is available to prevent local users from overwriting arbitrary files. As a temporary workaround, avoid using the scoadmin utility for tasks that involve temporary files, such as log files, to minimize the risk of exploitation.