Unrated severityNVD Advisory· Published Oct 4, 2002· Updated Apr 16, 2026

CVE-2002-0884

Description

Multiple format string vulnerabilities in in.rarpd (ARP server) on Solaris, Caldera UnixWare and Open UNIX, and possibly other operating systems, allows remote attackers to execute arbitrary code via format strings that are not properly handled in the functions (1) syserr and (2) error.

Affected products

Caldera (company)/Unixware
cpe:2.3:a:caldera:unixware:7.1.1:*:*:*:*:*:*:*
Caldera (company)/Openunix
cpe:2.3:o:caldera:openunix:8.0:*:*:*:*:*:*:*
Sun Corporation/Sunos2 versions
cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*
- cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/4791nvdPatchVendor Advisory
www.iss.net/security_center/static/9150.phpnvdVendor Advisory
ftp.caldera.com/pub/updates/OpenUNIX/CSSA-2002-SCO.29/CSSA-2002-SCO.29.txtnvd
archives.neohapsis.com/archives/vulnwatch/2002-q2/0074.htmlnvd
online.securityfocus.com/archive/1/273584nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.002
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000