CVE-2001-0717 Information

Description

Format string vulnerability in ToolTalk database server rpc.ttdbserverd allows remote attackers to execute arbitrary commands via format string specifiers that are passed to the syslog function.

Reference

ftp://stage.caldera.com/pub/security/openunix/CSSA-2001-SCO.28/CSSA-2001-SCO.28.txt http://ftp.support.compaq.com/patches/.new/html/SSRT0767U.shtml http://online.securityfocus.com/advisories/3584 http://securitytracker.com/id?1002479 http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/212 http://www.cert.org/advisories/CA-2001-27.html http://www.ciac.org/ciac/bulletins/m-002.shtml http://www.securityfocus.com/bid/3382 http://xforce.iss.net/alerts/advise98.php https://exchange.xforce.ibmcloud.com/vulnerabilities/7069