7.5

CVE-2002-1604

Exploit

Multiple buffer overflows in HP Tru64 UNIX allow local and possibly remote attackers to execute arbitrary code via a long NLSPATH environment variable to (1) csh, (2) dtsession, (3) dxsysinfo, (4) imapd, (5) inc, (6) uucp, (7) uux, (8) rdist, or (9) deliver.

Data is provided by the National Vulnerability Database (NVD)
HpHp-ux Version10.20
HpHp-ux Version11.00
HpHp-ux Version11.04
HpHp-ux Version11.11
HpHp-ux Version11.22
HpTru64 Version4.0f
HpTru64 Version4.0g
HpTru64 Version5.0a
HpTru64 Version5.1
HpTru64 Version5.1a
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 46.02% 0.974
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
http://www.kb.cert.org/vuls/id/158499
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/416427
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/437899
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/448987
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/531355
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/567963
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/584243
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/592515
Third Party Advisory
US Government Resource
http://www.kb.cert.org/vuls/id/846307
Third Party Advisory
US Government Resource