Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2002-1614

4 documents4 sources

Severity

7.2HIGH

EPSS

1.0%

top 23.08%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Timeline

PublishedSep 9

Latest updateApr 30

Description

Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at.

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

▶NVDhp/tru645 versions+4

▶NVDhp/hp-ux5 versions+4

GHSA

GHSA-5887-hhqx-pjgh: Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at↗2022-04-30

▶

CVEList

CVE-2002-1614: Buffer overflow in HP Tru64 UNIX allows local users to execute arbitrary code via a long argument to /usr/bin/at↗2005-03-25

▶

Exploit-DB

Tru64 UNIX 4.0g - '/usr/bin/at' Local Privilege Escalation↗2001-03-02

▶