Multiple Buffer Overflows in HP Tru64 UNIX Affecting Various Binary Executables
CVE-2002-1604

Currently unrated

Key Information:

Vendor: HP
Status: Tru64; HP-ux
Vendor: CVE Published:; 2 September 2002

Summary

HP Tru64 UNIX is susceptible to multiple buffer overflow vulnerabilities that can be exploited by attackers using an excessively long NLSPATH environment variable. This can potentially allow arbitrary code execution through various binaries including csh, dtsession, dxsysinfo, and others, posing significant security risks to systems running affected versions.

References

http://www.kb.cert.org/vuls/id/584243

third-party-advisoryx_refsource_CERT-VN

http://www.kb.cert.org/vuls/id/567963

third-party-advisoryx_refsource_CERT-VN

http://wwss1pro.compaq.com/support/reference_library/view...

vendor-advisoryx_refsource_HP

EPSS Score

46% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Mar 25, 2005
Vulnerability published
Sep 2, 2002