CVE-2002-1616

HP Tru64 UNIX <5.1a-4.0f - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1616. PoCs published by K2.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Tru64 UNIX's 'su' command (CVE-2002-1616). It leverages shellcode execution to achieve local privilege escalation by overwriting the return address on the stack.

Description

Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain root privileges via (1) su, (2) chsh, (3) passwd, (4) chfn, (5) dxchpwd, and (6) libc.

Exploits (1)

exploitdb WORKING POC VERIFIED

by K2 · clocaltru64

https://www.exploit-db.com/exploits/259

View Code ZIP pw:eip

This exploit targets a buffer overflow vulnerability in Tru64 UNIX's 'su' command (CVE-2002-1616). It leverages shellcode execution to achieve local privilege escalation by overwriting the return address on the stack.

Classification

Working Poc 95%

Attack Type

Lpe

Complexity

Moderate

Reliability

Reliable

Target: Tru64 UNIX 5.0 (OSF/1) su command

No auth needed

Prerequisites: executable stack enabled (executable_stack = 1) · local access to the target system

MITRE ATT&CK

T1068 - Exploitation for Privilege Escalation T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (15)

Core 15

Core References

Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/671627

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/11620

Vendor Advisory vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/5379

Third Party Advisory vendor-advisory x_refsource_hp

http://archives.neohapsis.com/archives/tru64/2002-q3/0019.html

Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/137555

Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/5380

Vendor Advisory mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/290115

US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/864083

Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/5381

Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/177067

Third Party Advisory mailing-list x_refsource_fulldisc

http://archives.neohapsis.com/archives/fulldisclosure/2002-q3/1203.html

Exploit x_refsource_misc

http://www.blacksheepnetworks.com/security/hack/tru64/TRU64_su.txt

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/10614

Patch, US Government Resource third-party-advisory x_refsource_cert-vn

http://www.kb.cert.org/vuls/id/193347

Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/5382

Scores

EPSS 0.0389

EPSS Percentile 88.9%

Details

Status published

Products (5)

hp/tru64 4.0f

hp/tru64 4.0g

hp/tru64 5.0a

hp/tru64 5.1

hp/tru64 5.1af

Published Aug 01, 2002

Tracked Since Feb 18, 2026