Overview
The HP Tru64 UNIX implementation of "traceroute" contains a locally exploitable buffer overflow.
Description
"traceroute" is used to display the route packets follow from one host to another on the Internet. A locally exploitable buffer overflow in "traceroute" may permit a local attacker to gain elevated privileges and execute arbitrary code on a vulnerable host. |
Impact
A local user may be able to gain elevated privileges and execute arbitrary code. |
Solution
Apply a patch. |
Vendor Information
CVSS Metrics
Group | Score | Vector |
---|---|---|
Base | ||
Temporal | ||
Environmental |
References
Acknowledgements
This document was written by Ian A Finlay.
Other Information
CVE IDs: | None |
Severity Metric: | 7.50 |
Date Public: | 2002-08-30 |
Date First Published: | 2002-09-05 |
Date Last Updated: | 2002-09-05 20:10 UTC |
Document Revision: | 6 |