Race condition in the db_loader program in ClearCase gives local users root access by setting SUID bits.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| rational_software | clearcase | 3.2 |
Buffer overflow in db_loader in ClearCase 4.2 and earlier allows local users to gain root privileges via a long TERM environment variable.
CVSS 2.0
Severity: HIGH
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| rational_software | clearcase | 3.2_plus |
| rational_software | clearcase | 4.0 |
| rational_software | clearcase | 4.1 |
| rational_software | clearcase | 4.2 |
Rational ClearCase 4.1, 2002.05, and possibly other versions allows remote attackers to cause a denial of service (crash) via certain packets to port 371, e.g. via nmap.
CVSS 2.0
Severity: MEDIUM
Problem Type: NVD-CWE-Other,
Products Affected
| Vendor | Product | Version |
|---|---|---|
| rational_software | clearcase | 2002-05-00 |
| rational_software | clearcase | 4.1 |