Vulnerability Details CVE-2001-0797
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.886
EPSS Ranking 99.5%
CVSS Severity
CVSS v2 Score 10.0
References
- ftp://patches.sgi.com/support/free/security/advisories/20011201-01-I
- ftp://stage.caldera.com/pub/security/openserver/CSSA-2001-SCO.40/CSSA-2001-SCO.40.txt
- http://marc.info/?l=bugtraq&m=100844757228307&w=2
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/213
- http://www-1.ibm.com/support/search.wss?rs=0&q=IY26221&apar=only
- http://www.cert.org/advisories/CA-2001-34.html
- http://www.kb.cert.org/vuls/id/569272
- http://www.securityfocus.com/archive/1/246487
- http://www.securityfocus.com/bid/3681
- http://xforce.iss.net/alerts/advise105.php
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7284
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2025
- ftp://patches.sgi.com/support/free/security/advisories/20011201-01-I
- ftp://stage.caldera.com/pub/security/openserver/CSSA-2001-SCO.40/CSSA-2001-SCO.40.txt
- http://marc.info/?l=bugtraq&m=100844757228307&w=2
- http://sunsolve.sun.com/pub-cgi/retrieve.pl?doctype=coll&doc=secbull/213
- http://www-1.ibm.com/support/search.wss?rs=0&q=IY26221&apar=only
- http://www.cert.org/advisories/CA-2001-34.html
- http://www.kb.cert.org/vuls/id/569272
- http://www.securityfocus.com/archive/1/246487
- http://www.securityfocus.com/bid/3681
- http://xforce.iss.net/alerts/advise105.php
- https://exchange.xforce.ibmcloud.com/vulnerabilities/7284
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2025
Products affected by CVE-2001-0797
-
cpe:2.3:o:hp:hp-ux:10.00
-
cpe:2.3:o:hp:hp-ux:10.01
-
cpe:2.3:o:hp:hp-ux:10.10
-
cpe:2.3:o:hp:hp-ux:10.20
-
cpe:2.3:o:hp:hp-ux:10.24
-
cpe:2.3:o:hp:hp-ux:11.0.4
-
cpe:2.3:o:hp:hp-ux:11.00
-
cpe:2.3:o:hp:hp-ux:11.11
-
cpe:2.3:o:ibm:aix:4.3
-
cpe:2.3:o:ibm:aix:4.3.1
-
cpe:2.3:o:ibm:aix:4.3.2
-
cpe:2.3:o:ibm:aix:4.3.3
-
cpe:2.3:o:ibm:aix:5.1
-
cpe:2.3:o:sco:openserver:5.0
-
cpe:2.3:o:sco:openserver:5.0.1
-
cpe:2.3:o:sco:openserver:5.0.2
-
cpe:2.3:o:sco:openserver:5.0.3
-
cpe:2.3:o:sco:openserver:5.0.4
-
cpe:2.3:o:sco:openserver:5.0.5
-
cpe:2.3:o:sco:openserver:5.0.6
-
cpe:2.3:o:sco:openserver:5.0.6a
-
cpe:2.3:o:sgi:irix:3.2
-
cpe:2.3:o:sgi:irix:3.3
-
cpe:2.3:o:sgi:irix:3.3.1
-
cpe:2.3:o:sgi:irix:3.3.2
-
cpe:2.3:o:sgi:irix:3.3.3
-
cpe:2.3:o:sun:solaris:2.4
-
cpe:2.3:o:sun:solaris:2.5
-
cpe:2.3:o:sun:solaris:2.5.1
-
cpe:2.3:o:sun:solaris:2.6
-
cpe:2.3:o:sun:solaris:7.0
-
cpe:2.3:o:sun:solaris:8.0
-
cpe:2.3:o:sun:sunos:-
-
cpe:2.3:o:sun:sunos:5.0
-
cpe:2.3:o:sun:sunos:5.1
-
cpe:2.3:o:sun:sunos:5.2
-
cpe:2.3:o:sun:sunos:5.3
-
cpe:2.3:o:sun:sunos:5.4
-
cpe:2.3:o:sun:sunos:5.5
-
cpe:2.3:o:sun:sunos:5.5.1
-
cpe:2.3:o:sun:sunos:5.7
-
cpe:2.3:o:sun:sunos:5.8