Lucene search
SAINT CorporationSAINT:34A93A021D186C7C9EABFFC9D0FEB6B3HistoryMar 30, 2007 - 12:00 a.m.
System V login argument array buffer overflow
2007-03-3000:00:00
SAINT Corporation
www.saintcorporation.com
17
0.974 High
EPSS
Percentile
99.9%
Added: 03/30/2007
CVE: CVE-2001-0797
BID: 3681
OSVDB: 690
Background
The login program is used by various applications for authentication to the system.
Problem
The login program dervied from System V is affected by a buffer overflow vulnerability when processing a long argument array. A remote attacker could execute arbitrary commands by initiating a telnet or rlogin session with a large number of environment variables.
Resolution
Apply one of the patches referenced in Sun Document ID 00213.
References
<http://www.cert.org/advisories/CA-2001-34.html>
Limitations
Exploit works on Sun SPARC Solaris versions 2.6 (03/98) and 7 (11/99).
Platforms
SunOS / Solaris
Related
packetstorm
packetstorm
System V Derived /bin/login Extraneous Arguments Buffer Overflow
2009-10-27 00:00:00
Solaris in.telnetd TTYPROMPT Buffer Overflow
2009-10-28 00:00:00
securityvulns
securityvulns
ISSalert: ISS Advisory: Buffer Overflow in /bin/login
2001-12-13 00:00:00
saint
saint
System V login argument array buffer overflow
2007-03-30 00:00:00
System V login argument array buffer overflow
2007-03-30 00:00:00
System V login argument array buffer overflow
2007-03-30 00:00:00
nessus
nessus
SysV /bin/login Environment Remote Overflow (rlogin)
2001-12-15 00:00:00
Multiple OS /bin/login Remote Overflow
2002-10-03 00:00:00
SysV /bin/login Environment Remote Overflow (telnet check)
2001-12-15 00:00:00
canvas
canvas
Immunity Canvas: SUNLOGIN
2001-12-12 05:00:00
Immunity Canvas: SUNLOGIN_PAMH
2001-12-12 00:00:00
checkpoint_advisories
checkpoint_advisories
System V TTYPROMPT Buffer Overflow - Ver2 (CVE-2001-0797)
2014-02-03 00:00:00
System V TTYPROMPT Buffer Overflow - Ver2 (CVE-2001-0797)
2014-01-07 00:00:00
cve
cve
CVE-2001-0797
2001-12-12 05:00:00
CVE-2003-0574
2003-08-18 04:00:00
openvas
openvas
SysV /bin/login buffer overflow (telnet)
2008-10-24 00:00:00
SysV /bin/login buffer overflow (telnet)
2008-10-24 00:00:00
exploitpack
exploitpack
Solaris 2.5.12.678 rlogin (SPARC) - binlogin Remote Buffer Overflow
2004-12-24 00:00:00
exploitdb
exploitdb
seebug
seebug
Solaris/SPARC 2.5.1/2.6/7/8 Derived 'login' Buffer Overflow Vulnerability
2014-07-01 00:00:00
Solaris 2.5.1/2.6/7/8 rlogin /bin/login Buffer Overflow Exploit (SPARC)
2008-06-05 00:00:00
Solaris 2.5.1/2.6/7/8 rlogin /bin/login - Buffer Overflow Exploit (SPARC)
2014-07-01 00:00:00
cert
cert
System V derived login contains a remotely exploitable buffer overflow
2001-12-12 00:00:00
cisco
cisco
Solaris /bin/login Vulnerability
2002-04-10 16:00:00