First published: Tue Sep 24 2002(Updated: )
Buffer overflow in inc mail utility for Compaq Tru64/OSF1 3.x allows local users to execute arbitrary code via a long MH environment variable.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
OSF Digital | =3.0 | |
OSF Digital | =3.0b | |
OSF Digital | =3.2 | |
OSF Digital | =3.2b | |
OSF Digital | =3.2c | |
OSF Digital | =3.2d | |
OSF Digital | =3.2de1 | |
OSF Digital | =3.2de2 | |
OSF Digital | =3.2f | |
OSF Digital | =3.2g | |
OSF Digital | =4.0 | |
Digital Ultrix | =3.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2002-1128 is classified as a high severity vulnerability due to its potential to allow local users to execute arbitrary code.
To fix CVE-2002-1128, ensure that you apply the latest security patches provided by Digital for affected versions of Tru64/OSF1 and Ultrix.
CVE-2002-1128 affects local users of Compaq Tru64/OSF1 versions 3.x and Digital Ultrix 3.0.
CVE-2002-1128 is a buffer overflow vulnerability in the inc mail utility.
CVE-2002-1128 cannot be exploited remotely as it requires local access to the system.