Digital Osf 1 vulnerabilities

CVE-2002-1129 [HIGH] CVE-2002-1129: Buffer overflow in dxterm allows local users to execute arbitrary code via a long -xrm argument. Buffer overflow in dxterm allows local users to execute arbitrary code via a long -xrm argument.

CVE-2002-1127 [HIGH] CVE-2002-1127: Buffer overflow in uucp in Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a Buffer overflow in uucp in Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long source (-s) command line parameter.

CVE-2002-1128 [HIGH] CVE-2002-1128: Buffer overflow in inc mail utility for Compaq Tru64/OSF1 3.x allows local users to execute arbitrar Buffer overflow in inc mail utility for Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long MH environment variable.

CVE-1999-0303 [MEDIUM] CVE-1999-0303: Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames. Buffer overflow in BNU UUCP daemon (uucpd) through long hostnames.

CVE-1999-0128 [MEDIUM] CVE-1999-0128: Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death. Oversized ICMP ping packets can result in a denial of service, aka Ping o' Death.

CVE-1999-0131 [HIGH] CVE-1999-0131: Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root a Buffer overflow and denial of service in Sendmail 8.7.5 and earlier through GECOS field gives root access to local users.

CVE-1999-0138 [HIGH] CVE-1999-0138: The suidperl and sperl program do not give up root privileges when changing UIDs back to the origina The suidperl and sperl program do not give up root privileges when changing UIDs back to the original users, allowing root access.

CVE-1999-1103 [MEDIUM] CVE-1999-1103: dxconsole in DEC OSF/1 3.2C and earlier allows local users to read arbitrary files by specifying the dxconsole in DEC OSF/1 3.2C and earlier allows local users to read arbitrary files by specifying the file with the -file parameter.

CVE-1999-0073 [CRITICAL] CVE-1999-0073: Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing a Telnet allows a remote client to specify environment variables including LD_LIBRARY_PATH, allowing an attacker to bypass the normal system libraries and gain root access.