Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-1128

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2002-1128
Last Modified 10 Sep 2008 03:13:55
Published 04 Oct 2002 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2002-1128

Summary

Buffer overflow in inc mail utility for Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long MH environment variable.

Vulnerable Systems

Operating System

  • Digital Osf 1 3.0

  • Digital Osf 1 3.0b

  • Digital Osf 1 3.2

  • Digital Osf 1 3.2b

  • Digital Osf 1 3.2c

  • Digital Osf 1 3.2d

  • Digital Osf 1 3.2de1

  • Digital Osf 1 3.2de2

  • Digital Osf 1 3.2f

  • Digital Osf 1 3.2g

  • Digital Osf 1 4.0

  • Digital Ultrix 3.0


References

VULNWATCH - 20020918 iDEFENSE Security Advisory 09.18.2002: Security Vulnerabilities in OSF1/Tru64 3.

BID - 5747

XF - osf1-inc-mh-bo(10147)


Last Updated: 27 May 2016 10:37:12