CVE-2002-1614

HP Tru64 UNIX - Buffer Overflow via Long Argument to /usr/bin/at

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2002-1614. PoCs published by Cody Tubbs, wlensinas.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Tru64 UNIX 4.0g's `/usr/bin/at` command. It uses a custom shellcode to achieve local privilege escalation by manipulating the return address and executing arbitrary code with elevated privileges.

Description

Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at.

Exploits (2)

exploitdb WORKING POC VERIFIED
by Cody Tubbs · clocaltru64
https://www.exploit-db.com/exploits/281

This exploit targets a buffer overflow vulnerability in Tru64 UNIX 4.0g's `/usr/bin/at` command. It uses a custom shellcode to achieve local privilege escalation by manipulating the return address and executing arbitrary code with elevated privileges.

Classification
Working Poc 90%
Attack Type
Lpe
Complexity
Moderate
Reliability
Theoretical
Target: Tru64 UNIX 4.0g (JAVA) /usr/bin/at
No auth needed
Prerequisites: executable_stack must be enabled · vulnerable version of Tru64 UNIX 4.0g
devstral-2 · analyzed Feb 16, 2026 Full analysis →
nomisec WORKING POC 1 stars
by wlensinas · poc
https://github.com/wlensinas/CVE-2002-1614

This repository contains a functional local root exploit for CVE-2002-1614, targeting a buffer overflow vulnerability in Tru64 UNIX 4.0g's `/usr/bin/at` command. The exploit uses a crafted environment variable to overflow the buffer and execute shellcode for privilege escalation.

Classification
Working Poc 95%
Attack Type
Lpe
Complexity
Moderate
Reliability
Theoretical
Target: Tru64 UNIX 4.0g (JAVA) /usr/bin/at
No auth needed
Prerequisites: Executable stack must be enabled · Access to the target system
devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (5)

Core 5
Core References
Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/435611
Third Party Advisory mailing-list x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2002-q3/1203.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/10016
Vendor Advisory mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/290115

Scores

EPSS 0.0212
EPSS Percentile 79.6%

Details

Status published
Products (10)
hp/hp-ux 10.20
hp/hp-ux 11.00
hp/hp-ux 11.04
hp/hp-ux 11.11
hp/hp-ux 11.22
hp/tru64 4.0f
hp/tru64 4.0g
hp/tru64 5.0a
hp/tru64 5.1
hp/tru64 5.1a
Published Sep 09, 2002
Tracked Since Feb 18, 2026