CVE-2002-1616

HP Tru64 UNIX <5.1a-4.0f - Buffer Overflow

Title source: llm

Description

Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain root privileges via (1) su, (2) chsh, (3) passwd, (4) chfn, (5) dxchpwd, and (6) libc.

Exploits (1)

exploitdb WORKING POC VERIFIED

by K2 · clocaltru64

https://www.exploit-db.com/exploits/259

View Code ZIP pw:eip

References (15)

[Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/671627

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/11620

[Vendor Advisory] http://www.securityfocus.com/bid/5379

[Third Party Advisory] http://archives.neohapsis.com/archives/tru64/2002-q3/0019.html

[Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/137555

[Patch] http://www.securityfocus.com/bid/5380

[Vendor Advisory] http://www.securityfocus.com/archive/1/290115

[US Government Resource] http://www.kb.cert.org/vuls/id/864083

[Patch] http://www.securityfocus.com/bid/5381

[Third Party Advisory, US Government Resource] http://www.kb.cert.org/vuls/id/177067

[Third Party Advisory] http://archives.neohapsis.com/archives/fulldisclosure/2002-q3/1203.html

[Exploit] http://www.blacksheepnetworks.com/security/hack/tru64/TRU64_su.txt

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/10614

[Patch, US Government Resource] http://www.kb.cert.org/vuls/id/193347

[Patch] http://www.securityfocus.com/bid/5382

Scores

EPSS 0.0034

EPSS Percentile 57.1%

Details

Status published

Products (5)

hp/tru64 4.0f

hp/tru64 4.0g

hp/tru64 5.0a

hp/tru64 5.1

hp/tru64 5.1af

Published Aug 01, 2002

Tracked Since Feb 18, 2026