Vulnerability Description
Vulnerability in webtop in UnixWare 7.1.1 and Open UNIX 8.0.0 allows local and possibly remote attackers to gain root privileges via shell metacharacters in the -c argument for (1) in scoadminreg.cgi or (2) service_action.cgi.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Caldera | Unixware | 7.1.1 |
| Caldera | Openunix | 8.0 |
References
- ftp://stage.caldera.com/pub/security/openunix/CSSA-2002-SCO.6/CSSA-2002-SCO.6.tx
- http://online.securityfocus.com/archive/1/251747Exploit
- http://www.iss.net/security_center/static/7977.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/3936
- ftp://stage.caldera.com/pub/security/openunix/CSSA-2002-SCO.6/CSSA-2002-SCO.6.tx
- http://online.securityfocus.com/archive/1/251747Exploit
- http://www.iss.net/security_center/static/7977.phpPatchVendor Advisory
- http://www.securityfocus.com/bid/3936
FAQ
What is CVE-2002-0311?
CVE-2002-0311 is a vulnerability with a CVSS score of 10.0 (HIGH). Vulnerability in webtop in UnixWare 7.1.1 and Open UNIX 8.0.0 allows local and possibly remote attackers to gain root privileges via shell metacharacters in the -c argument for (1) in scoadminreg.cgi ...
How severe is CVE-2002-0311?
CVE-2002-0311 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2002-0311?
Check the references section above for vendor advisories and patch information. Affected products include: Caldera Unixware, Caldera Openunix.