Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Jun 16, 2026

CVE-2002-1617

Description

Multiple buffer overflows in HP Tru64 UNIX 5.x allow local users to execute arbitrary code via (1) a long -contextDir argument to dtaction, (2) a long -p argument to dtprintinfo, (3) a long -customization argument to dxterm, or (4) a long DISPLAY environment variable to dtterm.

Affected products

Microfocus/Tru64
cpe:2.3:o:hp:tru64:5.1b_pk2_bl22:*:*:*:*:*:*:*
Microfocus/Tru64 UNIXllm-create
Range: 5.x

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.blacksheepnetworks.com/security/hack/tru64/TRU64_dtaction.txtnvdExploit
www.blacksheepnetworks.com/security/hack/tru64/TRU64_dtprintinfo.txtnvdExploit
www.blacksheepnetworks.com/security/hack/tru64/TRU64_dtterm.txtnvdExploit
www.blacksheepnetworks.com/security/hack/tru64/TRU64_dxterm.txtnvdExploit
www.securityfocus.com/archive/1/290115nvdVendor Advisory
www.kb.cert.org/vuls/id/202939nvdUS Government Resource
www.kb.cert.org/vuls/id/600699nvdUS Government Resource
www.kb.cert.org/vuls/id/836275nvdUS Government Resource
www.kb.cert.org/vuls/id/931579nvdUS Government Resource
archives.neohapsis.com/archives/fulldisclosure/2002-q3/1203.htmlnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000