The SCO Group (SCO UnixWare) Information for VU#336083
Uudecode performs inadequate checks on user-specified output files
- Vendor Information Help Date Notified: 15 Jul 2002
- Statement Date:
- Date Updated: 13 Dec 2002
All of our operating system offerings (Caldera Open UNIX, Caldera OpenLinux, SCO OpenServer) supply uudecode, and all of them have this vulnerability.
We are working on fixes for all our operating systems.
The vendor has not provided us with any further information regarding this vulnerability.
The SCO Group has published SCO Security Advisory CSSA-2002-SCO.44 to address this issue. For more information, please see
If you have feedback, comments, or additional information about this vulnerability, please send us email.