Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2001-0797

CWE-119Buffer Overflow14 documents7 sources
Severity
10.0CRITICAL
EPSS
88.7%
top 0.49%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
6
HP Hp-uxIBM AIXSCO Openserver+3 more
Timeline
PublishedDec 12
Latest updateMay 3

Description

Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages6 packages

NVDibm/aix5 versions+4
NVDhp/hp-ux8 versions+7
NVDsgi/irix5 versions+4
NVDsun/sunos9 versions+8
NVDsun/solaris6 versions+5

Patches

Patch: www.cert.orgPatch: www.securityfocus.comPatch: xforce.iss.net

🔴Vulnerability Details

3
GHSA
GHSA-rx82-m2fx-fwf6: Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of argum2022-05-03
CVEList
CVE-2001-0797: Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of argum2002-06-25
VulnCheck
sgi irix Out-of-bounds Write2001

💥Exploits & PoCs

8
Exploit-DB
System V Derived /bin/login - Extraneous Arguments Buffer Overflow (Metasploit)2010-07-03
Exploit-DB
Solaris TelnetD - 'TTYPROMPT' Remote Buffer Overflow (2) (Metasploit)2010-06-22
Exploit-DB
Solaris 2.5.1/2.6/7/8 rlogin (SPARC) - '/bin/login' Remote Buffer Overflow2004-12-24
Exploit-DB
Solaris 2.x/7.0/8 - Derived 'login' Remote Buffer Overflow2003-01-09
Exploit-DB
Solaris 2.6/7/8 - 'TTYPROMPT in.telnet' Remote Authentication Bypass2002-11-02

🔍Detection Rules

1
Suricata
GPL EXPLOIT login buffer non-evasive overflow attempt2010-09-23

📋Vendor Advisories

1
Cisco
Solaris /bin/login Vulnerability2002-04-10
CVE-2001-0797 (CRITICAL CVSS 10) | Buffer overflow in login in various | cvebase.io