Published: 04/10/2002 Updated: 05/09/2008

CVSS v2 Base Score: 7.2 | Impact Score: 10 | Exploitability Score: 3.9

VMScore: 725

Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C

Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and previous versions, based on the Sharity package, allows local users to gain root privileges via long (1) -U, (2) -D, (3) -P, (4) -S, (5) -N, or (6) -u parameters.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hp cifs-9000 server a.01.05
hp cifs-9000 server a.01.06

source: wwwsecurityfocuscom/bid/5088/info A vulnerability has been reported in the /opt/cifsclient/bin/cifslogin utility distributed with CIFS/9000 The utility is prone to several buffer overflow conditions and may lead to root compromise The vulnerability occurs due to the lack of bounds checking when accepting user input for various ...

Buffer overflows in the cifslogin command for HP CIFS/9000 Client A.01.06 and earlier

CVE-2002-0991 Buffer overflows in the cifslogin command for HP CIFS/9000 Client A0106 and earlier Exploit-db publication at wwwexploit-dbcom/exploits/21577/ Packetstorm publication at packetstormsecuritycom/files/26303/cifslogintxthtml SecurityFocus publication at wwwsecurityfocuscom/bid/5088 Author Alex Hernandez aka (@_alt3kx_) The exploit was

NVD-CWE-Other http://www.iss.net/security_center/static/9431.php http://www.securityfocus.com/bid/5088 http://archives.neohapsis.com/archives/bugtraq/2002-06/0300.html http://archives.neohapsis.com/archives/hp/2002-q3/0016.html https://nvd.nist.gov https://github.com/alt3kx/CVE-2002-0991 https://www.exploit-db.com/exploits/21577/

CVE-2002-0991

Vulnerability Summary

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect