CVE-2002-0887

scoadmin for Caldera/SCO OpenServer 5.0.5 and 5.0.6 allows local users to overwrite arbitrary files via a symlink attack on temporary files, as demonstrated using log files.

Score2.1
Access VectorLOCAL
Access ComplexityLOW
AuthenticationNONE
Confidentiality ImpactNONE
Integrity ImpactPARTIAL
Availability ImpactNONE
Published2002-10-04 12:00:00.000-04
Last Modified2016-10-17 10:22:52.000-04

Vulnerable Software List

VendorProductVersions
Caldera Openserver 5.0.5, 5.0.6

References

SourceLink
CALDERACSSA-2002-SCO.22
BUGTRAQ20010522 [SRT2001-10] - scoadmin /tmp issues
XFopenserver-scoadmin-symlink(9210)
BID4875