Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0797

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2001-0797
Last Modified 05 Sep 2008 04:24:57
Published 12 Dec 2001 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-0797

Summary

Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.

Vulnerable Systems

Operating System

  • Hp-ux 10.00

  • Hp-ux 10.01

  • Hp-ux 10.10

  • Hp-ux 10.20

  • Hp-ux 10.24

  • Hp-ux 11.0.4

  • Hp-ux 11.00

  • Hp-ux 11.11

  • Ibm Aix 4.3

  • Ibm Aix 4.3.1

  • Ibm Aix 4.3.2

  • Ibm Aix 4.3.3

  • Ibm Aix 5.1

  • Sco Openserver 5.0

  • Sco Openserver 5.0.1

  • Sco Openserver 5.0.2

  • Sco Openserver 5.0.3

  • Sco Openserver 5.0.4

  • Sco Openserver 5.0.5

  • Sco Openserver 5.0.6

  • Sco Openserver 5.0.6a

  • Sgi Irix 3.2

  • Sgi Irix 3.3

  • Sgi Irix 3.3.1

  • Sgi Irix 3.3.2

  • Sgi Irix 3.3.3

  • Sun Solaris 2.0

  • Sun Solaris 2.1

  • Sun Solaris 2.2

  • Sun Solaris 2.3

  • Sun Solaris 2.4

  • Sun Solaris 2.5

  • Sun Solaris 2.5.1

  • Sun Solaris 2.6

  • Sun Solaris 7.0

  • Sun Solaris 8.0


References

CERT - CA-2001-34

CERT-VN - VU#569272

XF - telnet-tab-bo(7284)

ISS - 20011212 Buffer Overflow in /bin/login

BID - 3681

BUGTRAQ - 20011219 Linux distributions and /bin/login overflow

AIXAPAR - IY26221

SUN - 00213

BUGTRAQ - 20011214 Sun Solaris login bug patches out

CALDERA - CSSA-2001-SCO.40

SGI - 20011201-01-I


Last Updated: 27 May 2016 10:36:24