VYPR

Cde

by Cde

CVEs (10)

  • CVE-2003-0834Dec 1, 2003
    risk 0.03cvss epss 0.01

    Buffer overflow in CDE libDtHelp library allows local users to execute arbitrary code via (1) a modified DTHELPUSERSEARCHPATH environment variable and the Help feature, (2) DTSEARCHPATH, or (3) LOGNAME.

  • CVE-1999-0841Nov 30, 1999
    risk 0.03cvss epss 0.01

    Buffer overflow in CDE mailtool allows local users to gain root privileges via a long MIME Content-Type.

  • CVE-1999-0689Sep 13, 1999
    risk 0.03cvss epss 0.01

    The CDE dtspcd daemon allows local users to execute arbitrary commands via a symlink attack.

  • CVE-1999-0691Sep 13, 1999
    risk 0.03cvss epss 0.01

    Buffer overflow in the AddSuLog function of the CDE dtaction utility allows local users to gain root privileges via a long user name.

  • CVE-1999-0014Jan 21, 1998
    risk 0.03cvss epss 0.01

    Unauthorized privileged access or denial of service via dtappgather program in CDE.

  • CVE-1999-0112May 1, 1997
    risk 0.03cvss epss 0.01

    Buffer overflow in AIX dtterm program for the CDE.

  • CVE-2002-0678Jul 23, 2002
    risk 0.01cvss epss 0.09

    CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.

  • CVE-1999-0687Sep 13, 1999
    risk 0.00cvss epss 0.02

    The ToolTalk ttsession daemon uses weak RPC authentication, which allows a remote attacker to execute commands.

  • CVE-1999-0690Jul 1, 1999
    risk 0.00cvss epss 0.01

    HP CDE program includes the current directory in root's PATH variable.

  • CVE-1999-0713Jun 11, 1999
    risk 0.00cvss epss 0.00

    The dtlogin program in Compaq Tru64 UNIX allows local users to gain root privileges.