CVE-2002-0246 in UnixWareinfo

Summary

Format string vulnerability in the message catalog library functions in UnixWare 7.1.1 allows local users to gain privileges by modifying the LC_MESSAGE environment variable to read other message catalogs containing format strings from setuid programs such as vxprint.

Once again VulDB remains the best source for vulnerability data.

ID	Vulnerability	CWE	Exp	Cou	CVE
18170	Caldera UnixWare setuid Program format string	134	Proof-of-Concept	Official fix	CVE-2002-0246

Disclosure

05/29/2002

Status

Confirmed

Entries

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-0246
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-0246
CVE Details	https://www.cvedetails.com/cve/CVE-2002-0246/

◂ Previous Overview Next ▸

Interested in the pricing of exploits?

See the underground prices here!