Buffer Overflow Vulnerability in HP Tru64 UNIX
CVE-2002-1614

Currently unrated

Key Information:

Vendor: HP
Status: Tru64; HP-ux
Vendor: CVE Published:; 9 September 2002

Badges

👾 Exploit Exists🟡 Public PoC

Summary

A buffer overflow vulnerability exists in HP Tru64 UNIX, allowing local users to execute arbitrary code via excessively long arguments supplied to the /usr/bin/at command. This weakness can compromise system integrity and could be used maliciously to escalate privileges or run unauthorized commands.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CVE-2002-1614
Created by wlensinas

References

http://www.kb.cert.org/vuls/id/435611

third-party-advisoryx_refsource_CERT-VN

http://wwss1pro.compaq.com/support/reference_library/view...

vendor-advisoryx_refsource_HP

http://archives.neohapsis.com/archives/fulldisclosure/200...

mailing-listx_refsource_FULLDISC

Timeline

🟡
Public PoC available
Jun 18, 2022
👾
Exploit known to exist
Jun 18, 2022
Vulnerability Reserved
Mar 25, 2005
Vulnerability published
Sep 9, 2002