Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2002-1129

4 documents4 sources
Severity
7.2HIGH
EPSS
0.3%
top 42.64%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Compaq Tru64Digital OSF 1
Timeline
PublishedOct 4
Latest updateApr 30

Description

Buffer overflow in dxterm allows local users to execute arbitrary code via a long -xrm argument.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

NVDcompaq/tru6417 versions+16
NVDdigital/osf_110 versions+9

Patches

Patch: archives.neohapsis.comPatch: archives.neohapsis.com

🔴Vulnerability Details

2
GHSA
GHSA-x95x-x5p2-7x8p: Buffer overflow in dxterm allows local users to execute arbitrary code via a long -xrm argument2022-04-30
CVEList
CVE-2002-1129: Buffer overflow in dxterm allows local users to execute arbitrary code via a long -xrm argument2002-09-24

💥Exploits & PoCs

1
Exploit-DB
HP Tru64/OSF1 DXTerm - Local Buffer Overflow2002-07-03
CVE-2002-1129 (HIGH CVSS 7.2) | Buffer overflow in dxterm allows lo | cvebase.io