PT-2002-1895 · Caldera+1 · Open Unix+3

Published

2002-08-31

Updated

2018-10-30

CVE-2002-0884

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: in.rarpd (ARP server) on Solaris, Caldera UnixWare and Open UNIX (affected versions not specified)

Description: The issue is related to multiple format string vulnerabilities in the in.rarpd service. These vulnerabilities allow remote attackers to execute arbitrary code by providing format strings that are not properly handled in the functions syserr and error.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2002-0884

Affected Products

Caldera Unixware

Open Unix

Solaris

In.Rarpd

PT-2002-1895 · Caldera+1 · Open Unix+3

CVE-2002-0884

Related Identifiers

Affected Products

References · 6