CVE-2006-0177
published 2006-01-11CVE-2006-0177: Multiple buffer overflows in Cray UNICOS 9.0.2.2 might allow local users to gain privileges by (1) invoking /usr/bin/script with a long command line argument…
PriorityP423high7.2CVSS 2.0
AVLACLAuNCCICAC
EXPLOIT
EPSS
1.04%
59.6th percentile
Multiple buffer overflows in Cray UNICOS 9.0.2.2 might allow local users to gain privileges by (1) invoking /usr/bin/script with a long command line argument or (2) setting the -c option of /etc/nu to the name of a file containing a long line.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cray | unicos | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Cray UNICOS /usr/bin/script - Command Line Argument Local Overflow
exploitdb·2006-01-10
CVE-2006-0177 Cray UNICOS /usr/bin/script - Command Line Argument Local Overflow
Cray UNICOS /usr/bin/script - Command Line Argument Local Overflow
---
source: https://www.securityfocus.com/bid/16205/info
Cray UNICOS is prone to locally exploitable buffer overflow vulnerabilities. These issues are due to insufficient bounds checking of command line parameters in various utilities with setuid-superuser privileges.
Successful exploitation could result in execution of malicious machine code with superuser privileges, facilitating the complete compromise of affected computers.
These issues are reported in version 9.0.2.2 of UNICOS; other versions may also be affected.
for '/usr/bin/script':
script `perl -e 'print "A"x1000'`
Exploit-DB
Cray UNICOS /etc/nu - '-c' Option Filename Processing Local Overflow
exploitdb·2006-01-10
CVE-2006-0177 Cray UNICOS /etc/nu - '-c' Option Filename Processing Local Overflow
Cray UNICOS /etc/nu - '-c' Option Filename Processing Local Overflow
---
source: https://www.securityfocus.com/bid/16205/info
Cray UNICOS is prone to locally exploitable buffer overflow vulnerabilities. These issues are due to insufficient bounds checking of command line parameters in various utilities with setuid-superuser privileges.
Successful exploitation could result in execution of malicious machine code with superuser privileges, facilitating the complete compromise of affected computers.
These issues are reported in version 9.0.2.2 of UNICOS; other versions may also be affected.
for '/etc/nu':
echo "" >> /tmp/acid
udbgen -p /tmp
echo `perl -e 'print "A"x10000'` >> /tmp/script
/etc/nu -p /tmp -c /tmp/script -a
http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0343.htmlhttp://www.securityfocus.com/bid/16205https://exchange.xforce.ibmcloud.com/vulnerabilities/24276http://archives.neohapsis.com/archives/fulldisclosure/2006-01/0343.htmlhttp://www.securityfocus.com/bid/16205https://exchange.xforce.ibmcloud.com/vulnerabilities/24276
2006-01-11
Published