CVE-2002-0572 – Apple Mac OSX 10.x / FreeBSD 4.x / OpenBSD 2.x / Solaris 2.5/2.6/7.0/8 - 'exec C Library' Standard I/O File Descriptor Closure
https://notcve.org/view.php?id=CVE-2002-0572
FreeBSD 4.5 and earlier, and possibly other BSD-based operating systems, allows local users to write to or read from restricted files by closing the file descriptors 0 (standard input), 1 (standard output), or 2 (standard error), which may then be reused by a called setuid process that intended to perform I/O on normal files. • https://www.exploit-db.com/exploits/21407 ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-02:23.stdio.asc http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0033.html http://online.securityfocus.com/archive/1/268970 http://online.securityfocus.com/archive/1/269102 http://www.ciac.org/ciac/bulletins/m-072.shtml http://www.iss.net/security_center/static/8920.php http://www.kb.cert.org/vuls/id/809347 http://www.osvdb.org/6095 http://www.secu •
CVE-2002-0033 – Solaris 2/7/8/9 cachefsd - Remote Heap Overflow
https://notcve.org/view.php?id=CVE-2002-0033
Heap-based buffer overflow in cfsd_calloc function of Solaris cachefsd allows remote attackers to execute arbitrary code via a request with a long directory and cache name. Desbordamiento de montón (heap) en la función cfsd_calloc de Solaris cachefsd permite a atacantes remotos ejecutar código arbitrario mediante una petición con nombres de directorio y de caché largos. • https://www.exploit-db.com/exploits/21437 http://archives.neohapsis.com/archives/bugtraq/2002-05/0026.html http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F44309 http://www.cert.org/advisories/CA-2002-11.html http://www.iss.net/security_center/static/8999.php http://www.kb.cert.org/vuls/id/635811 http://www.securityfocus.com/bid/4674 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A124 https://oval.cisecurity.org/repository/ •
CVE-2002-0158 – Sun Solaris 2.6/7.0/8 - XSun Color Database File Heap Overflow
https://notcve.org/view.php?id=CVE-2002-0158
Buffer overflow in Xsun on Solaris 2.6 through 8 allows local users to gain root privileges via a long -co (color database) command line argument. Desbordamiento de buffer en XSun sobre Solaris 2.6 a 8 permite a un usuario local obtener privilegios de root mediante un argumento -co largo de linea de comandos. • https://www.exploit-db.com/exploits/21360 http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0000.html http://marc.info/?l=bugtraq&m=101776858410652&w=2 http://sunsolve.Sun.COM/pub-cgi/retrieve.pl?doc=fpatches%2F108652 http://www.securityfocus.com/bid/4408 https://exchange.xforce.ibmcloud.com/vulnerabilities/8703 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A14 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef% •
CVE-2002-0090
https://notcve.org/view.php?id=CVE-2002-0090
Buffer overflow in Low BandWidth X proxy (lbxproxy) in Solaris 8 allows local users to execute arbitrary code via a long display command line option. Desbordamiento de buffer en lbxprosy en Solaris 8 permite a usuarios locales ejecutar código arbitrario mediante una opción 'display' de línea de comandos larga. • http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0041.html http://online.securityfocus.com/archive/1/270149 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/44842 http://www.esecurityonline.com/advisories/eSO3761.asp http://www.iss.net/security_center/static/8958.php http://www.kb.cert.org/vuls/id/188507 http://www.securityfocus.com/bid/4633 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A179 https://oval.cisecurity.org/reposit •
CVE-2002-0085
https://notcve.org/view.php?id=CVE-2002-0085
cachefsd in Solaris 2.6, 7, and 8 allows remote attackers to cause a denial of service (crash) via an invalid procedure call in an RPC request. cachefsd en Solaris 2.6, 7 y 8 permite a atacantes remotos causar una denegación de servicio (caída) mediante una llamada a procedimiento inválida en una petición RPC. • http://archives.neohapsis.com/archives/vulnwatch/2002-q2/0047.html http://online.securityfocus.com/archive/1/270122 http://www.esecurityonline.com/advisories/eSO4197.asp http://www.securityfocus.com/bid/4634 https://exchange.xforce.ibmcloud.com/vulnerabilities/8956 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4329 •