CVE-2002-2071

Compaq Tru64 4.0 - Denial of Service via TCP SYN Scan

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-2071. PoCs published by Luca Papotti.

AI-analyzed exploit summary This exploit leverages a malformed TCP packet with both SYN and FIN flags set to trigger a denial of service condition on vulnerable Tru64 systems. The provided hping2 command demonstrates the attack by sending a spoofed packet to the target.

Description

Compaq Tru64 4.0 d allows remote attackers to cause a denial of service in (1) telnet, (2) FTP, (3) ypbind, (4) rpc.lockd, (5) snmp, (6) ttdbserverd, and possibly other services via a TCP SYN scan, as demonstrated using nmap.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Luca Papotti · textdosunix
https://www.exploit-db.com/exploits/21261

This exploit leverages a malformed TCP packet with both SYN and FIN flags set to trigger a denial of service condition on vulnerable Tru64 systems. The provided hping2 command demonstrates the attack by sending a spoofed packet to the target.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Tru64 4.0E, Digital Unix, VxWorks
No auth needed
Prerequisites: hping2 tool · network access to target
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/4011
Third Party Advisory mailing-list x_refsource_bugtraq
http://archives.neohapsis.com/archives/bugtraq/2002-01/0357.html
Third Party Advisory vdb-entry x_refsource_xf
http://www.iss.net/security_center/static/8040.php

Scores

EPSS 0.0340
EPSS Percentile 87.4%

Details

Status published
Products (1)
compaq/tru64 4.0e
Published Dec 31, 2002
Tracked Since Feb 18, 2026