CVE-2002-0311 Information

Description

Vulnerability in webtop in UnixWare 7.1.1 and Open UNIX 8.0.0 allows local and possibly remote attackers to gain root privileges via shell metacharacters in the -c argument for (1) in scoadminreg.cgi or (2) service_action.cgi.

Reference

ftp://stage.caldera.com/pub/security/openunix/CSSA-2002-SCO.6/CSSA-2002-SCO.6.txt http://online.securityfocus.com/archive/1/251747 http://www.iss.net/security_center/static/7977.php http://www.securityfocus.com/bid/3936