oval:org.mitre.oval:def:175

Definition Id: oval:org.mitre.oval:def:175

Oval ID:	oval:org.mitre.oval:def:175
Title:	Solaris 8 CDE ToolTalk Database Server Symbolic Link Vulnerability
Description:	CDE ToolTalk database server (ttdbserver) allows local users to overwrite arbitrary files via a symlink attack on the transaction log file used by the _TT_TRANSACTION RPC procedure.
Family:	unix	Class:	vulnerability
Reference(s):	CVE-2002-0678	Version:	3
Platform(s):	Sun Solaris 8	Product(s):	Common Desktop Environment
Definition Synopsis:
Software section Solaris 8 Installed AND File rpc.ttdbserverd exists AND NOT Patch 110286-09 or later installed AND Configuration section inetd.conf contains rpc.ttdbserverd AND inetd running AND File rpc.ttdbserverd executable File rpc.ttdbserverd executable AND File rpc.ttdbserverd executable AND File rpc.ttdbserverd executable