CVE-2003-1360
HP-UX 10.0-10.34 - Buffer Overflow via TERM Environment Variable
Title source: llmDescription
Buffer overflow in the setupterm function of (1) lanadmin and (2) landiag programs of HP-UX 10.0 through 10.34 allows local users to execute arbitrary code via a long TERM environment variable.
References (5)
Core 5
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/6834
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/11314
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/324381
Third Party Advisory, VDB Entry vendor-advisory
x_refsource_hp
http://www.securityfocus.com/advisories/4957
Third Party Advisory third-party-advisory
x_refsource_sreason
http://securityreason.com/securityalert/3236
Scores
EPSS
0.0006
EPSS Percentile
18.6%
Details
CWE
CWE-119
Status
published
Products (11)
hp/hp-ux
10.00
hp/hp-ux
10.01
hp/hp-ux
10.08
hp/hp-ux
10.09
hp/hp-ux
10.10
hp/hp-ux
10.16
hp/hp-ux
10.20
hp/hp-ux
10.24
hp/hp-ux
10.26
hp/hp-ux
10.30
... and 1 more
Published
Dec 31, 2003
Tracked Since
Feb 18, 2026