Description
Buffer overflow in rpc.cmsd in SCO UnixWare 7.1.1 and Open UNIX 8.0.0 allows remote attackers to execute arbitrary commands via a long parameter to rtable_create (procedure 21).
Affected products
- sco / open_unix8.0.0 – 8.0.0
- sco / unixware7.1.1 – 7.1.1
References
- MISCftp://stage.caldera.com/pub/security/openunix/CSSA-2002-SCO.12/CSSA-2002-SCO.12.txt
- MISChttp://www.iss.net/security_center/static/8597.php
- MISChttp://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-01/0127.html
- MISChttp://www.derkeiler.com/Mailing-Lists/securityfocus/bugtraq/2002-01/0129.html