Oval Definition:	oval:org.mitre.oval:def:2770
Revision Date: 2010-09-20 Version: 20 Title: Solaris 9 CDE ToolTalk Database Server Symbolic Link Vulnerability Description: CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure. Family: unix Class: vulnerability Status: ACCEPTED Reference(s): CVE-2002-0678 Platform(s): Sun Solaris 9 Product(s): Common Desktop Environment Definition Synopsis Software section Solaris 9 Installed AND Toolktalk (SUNWtltk/SUNWtltkx) installed AND NOT Patch 112808-02 or later installed AND Configuration section inetd running AND inetd.conf contains rpc.ttdbserverd
BACK