Unrated severityNVD Advisory· Published Aug 1, 2002· Updated Apr 16, 2026

CVE-2002-1616

Description

Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain root privileges via (1) su, (2) chsh, (3) passwd, (4) chfn, (5) dxchpwd, and (6) libc.

Affected products

HP/Tru645 versions
cpe:2.3:o:hp:tru64:4.0f:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:o:hp:tru64:4.0f:*:*:*:*:*:*:*
- cpe:2.3:o:hp:tru64:4.0g:*:*:*:*:*:*:*
- cpe:2.3:o:hp:tru64:5.0a:*:*:*:*:*:*:*
- cpe:2.3:o:hp:tru64:5.1:*:*:*:*:*:*:*
- cpe:2.3:o:hp:tru64:5.1af:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/193347nvdPatchUS Government Resource
www.securityfocus.com/bid/5380nvdPatch
www.securityfocus.com/bid/5381nvdPatch
www.securityfocus.com/bid/5382nvdPatch
www.blacksheepnetworks.com/security/hack/tru64/TRU64_su.txtnvdExploit
www.kb.cert.org/vuls/id/137555nvdThird Party AdvisoryUS Government Resource
www.kb.cert.org/vuls/id/177067nvdThird Party AdvisoryUS Government Resource
www.kb.cert.org/vuls/id/671627nvdThird Party AdvisoryUS Government Resource
www.securityfocus.com/archive/1/290115nvdVendor Advisory
www.securityfocus.com/bid/5379nvdVendor Advisory
www.kb.cert.org/vuls/id/864083nvdUS Government Resource
archives.neohapsis.com/archives/fulldisclosure/2002-q3/1203.htmlnvd
archives.neohapsis.com/archives/tru64/2002-q3/0019.htmlnvd
exchange.xforce.ibmcloud.com/vulnerabilities/10614nvd
exchange.xforce.ibmcloud.com/vulnerabilities/11620nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000