Vulnerability in Caldera Unixware

CVE-2002-0105

CDE dtlogin in Caldera UnixWare 7.1.0, and possibly other operating systems, allows local users to gain privileges via a symlink attack on /var/dt/Xerrors since /var/dt is world-writable.

EPSS: 0.003 (26.3th percentile) — read the EPSS interpretation.

Affected products

Caldera Unixware — versions 7.1.0
N/a — versions n/a

References

cve@mitre.org (vdb-entry, x_refsource_BID, Vendor Advisory)
cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
cve@mitre.org (vdb-entry, Vendor Advisory, x_refsource_XF)