CVE-2002-1199 - Vulnerability Details - OpenCVE

The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

The EPSS score is 0.02144.

Key SSVC decision points have not yet been added.

Vendors	Products
Caldera	Openlinux
Sco	Openserver
Sun	Solaris Sunos

Configuration 1 [-]

OR	cpe:2.3:o:caldera:openlinux:2.2:::::::*
	cpe:2.3:o:caldera:openlinux:2.3:::::::*
	cpe:2.3:o:caldera:openlinux:2.4:::::::*
	cpe:2.3:o:sco:openserver:5.0.5:::::::*
	cpe:2.3:o:sco:openserver:5.0.6:::::::*
	cpe:2.3:o:sco:openserver:5.0.6a:::::::*
	cpe:2.3:o:sun:solaris:9.0::sparc:::::
	cpe:2.3:o:sun:sunos:5.7:::::::*
	cpe:2.3:o:sun:sunos:5.8:::::::*

No data.

No data.

Advisories

Source	ID	Title
EUVD	EUVD-2002-1183	The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References

Link	Providers
ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40
http://marc.info/?l=bugtraq&m=103426842025029&w=2
http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47903
http://www.iss.net/security_center/static/10329.php
http://www.kb.cert.org/vuls/id/538033
http://www.securityfocus.com/bid/5937
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2423

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-09-01T04:00:00

Updated: 2024-08-08T03:19:27.865Z

Reserved: 2002-10-11T00:00:00

Link: CVE-2002-1199

Vulnrichment

No data.

NVD

Status : Deferred

Published: 2002-10-28T05:00:00.000

Modified: 2025-04-03T01:03:51.193

Link: CVE-2002-1199

Redhat

No data.

OpenCVE Enrichment

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2002-10-10T00:00:00", "descriptions": [{"lang": "en", "value": "The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2007-11-13T00:00:00", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "47903", "tags": ["vendor-advisory", "x_refsource_SUNALERT"], "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47903"}, {"name": "20021010 Multiple vendor ypxfrd map handling vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=103426842025029&w=2"}, {"name": "CSSA-2002-SCO.40", "tags": ["vendor-advisory", "x_refsource_CALDERA"], "url": "ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40"}, {"name": "ypxfrd-file-disclosure(10329)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "http://www.iss.net/security_center/static/10329.php"}, {"name": "VU#538033", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/538033"}, {"name": "oval:org.mitre.oval:def:2423", "tags": ["vdb-entry", "signature", "x_refsource_OVAL"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2423"}, {"name": "5937", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/5937"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2002-1199", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "47903", "refsource": "SUNALERT", "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47903"}, {"name": "20021010 Multiple vendor ypxfrd map handling vulnerability", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=103426842025029&w=2"}, {"name": "CSSA-2002-SCO.40", "refsource": "CALDERA", "url": "ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40"}, {"name": "ypxfrd-file-disclosure(10329)", "refsource": "XF", "url": "http://www.iss.net/security_center/static/10329.php"}, {"name": "VU#538033", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/538033"}, {"name": "oval:org.mitre.oval:def:2423", "refsource": "OVAL", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2423"}, {"name": "5937", "refsource": "BID", "url": "http://www.securityfocus.com/bid/5937"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T03:19:27.865Z"}, "title": "CVE Program Container", "references": [{"name": "47903", "tags": ["vendor-advisory", "x_refsource_SUNALERT", "x_transferred"], "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47903"}, {"name": "20021010 Multiple vendor ypxfrd map handling vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ", "x_transferred"], "url": "http://marc.info/?l=bugtraq&m=103426842025029&w=2"}, {"name": "CSSA-2002-SCO.40", "tags": ["vendor-advisory", "x_refsource_CALDERA", "x_transferred"], "url": "ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40"}, {"name": "ypxfrd-file-disclosure(10329)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "http://www.iss.net/security_center/static/10329.php"}, {"name": "VU#538033", "tags": ["third-party-advisory", "x_refsource_CERT-VN", "x_transferred"], "url": "http://www.kb.cert.org/vuls/id/538033"}, {"name": "oval:org.mitre.oval:def:2423", "tags": ["vdb-entry", "signature", "x_refsource_OVAL", "x_transferred"], "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2423"}, {"name": "5937", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/5937"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2002-1199", "datePublished": "2004-09-01T04:00:00", "dateReserved": "2002-10-11T00:00:00", "dateUpdated": "2024-08-08T03:19:27.865Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:caldera:openlinux:2.2:*:*:*:*:*:*:*", "matchCriteriaId": "86288A2E-B1BD-4DA9-BCCC-35AC44EEDD52", "vulnerable": true}, {"criteria": "cpe:2.3:o:caldera:openlinux:2.3:*:*:*:*:*:*:*", "matchCriteriaId": "23B38FCC-2C86-4E84-860B-EBAE0FA123B6", "vulnerable": true}, {"criteria": "cpe:2.3:o:caldera:openlinux:2.4:*:*:*:*:*:*:*", "matchCriteriaId": "A63714ED-A697-4AC3-AF13-3B028F9A87EF", "vulnerable": true}, {"criteria": "cpe:2.3:o:sco:openserver:5.0.5:*:*:*:*:*:*:*", "matchCriteriaId": "B8BA72B4-C4AF-41C6-92ED-30B286E00EF5", "vulnerable": true}, {"criteria": "cpe:2.3:o:sco:openserver:5.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "1E140F76-D078-4F58-89CF-3278CDCB9AF3", "vulnerable": true}, {"criteria": "cpe:2.3:o:sco:openserver:5.0.6a:*:*:*:*:*:*:*", "matchCriteriaId": "BBC635C0-2B09-41F5-8160-365EC8642F89", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:solaris:9.0:*:sparc:*:*:*:*:*", "matchCriteriaId": "A711CDC2-412C-499D-9FA6-7F25B06267C6", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:sunos:5.7:*:*:*:*:*:*:*", "matchCriteriaId": "08003947-A4F1-44AC-84C6-9F8D097EB759", "vulnerable": true}, {"criteria": "cpe:2.3:o:sun:sunos:5.8:*:*:*:*:*:*:*", "matchCriteriaId": "A2475113-CFE4-41C8-A86F-F2DA6548D224", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The getdbm procedure in ypxfrd allows local users to read arbitrary files, and remote attackers to read databases outside /var/yp, via a directory traversal and symlink attack on the domain and map arguments."}, {"lang": "es", "value": "El procedimiento getdbm en ypxfrd permite a usuarios locales leer ficheros arbitrarios, y a atacantes remotos leer bases de datos fuera de /var/yp, mediante ataques de atravesamiento de directorios y de enlaces simb\u00f3licos en los argumentos de dominio y mapa."}], "id": "CVE-2002-1199", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2002-10-28T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=103426842025029&w=2"}, {"source": "cve@mitre.org", "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47903"}, {"source": "cve@mitre.org", "url": "http://www.iss.net/security_center/static/10329.php"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/538033"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/5937"}, {"source": "cve@mitre.org", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2423"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "ftp://ftp.caldera.com/pub/updates/OpenServer/CSSA-2002-SCO.40"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://marc.info/?l=bugtraq&m=103426842025029&w=2"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/47903"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.iss.net/security_center/static/10329.php"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/538033"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/5937"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2423"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}