VDB
CVE-2001-0797
CVE-2001-0797
PUBLISHED
CVSS 10 CRITICAL
Buffer overflow in login in various System V based operating systems allows remote attackers to execute arbitrary commands via a large number of arguments through services such as telnet and rlogin.
EPSS 84.08% · 99.3th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
84.08%
99.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| ibm | aix | 4.3, 5.1, 4.3.1 |
| hp | hp-ux | 10.01, 10.00, 10.10 |
| n/a | n/a | n/a |
| sun | solaris | 2.4, 2.5, 2.5.1 |
| sco | openserver | 5.0.6, 5.0, 5.0.3 |
| sun | sunos | 5.2, 5.4, 5.5 |
| sgi | irix | 3.3.3, 3.3.2, 3.3.1 |
Exploit Intelligence
- CIRCL confirmed: CVE-2001-0797 (circl-sighting)
- CIRCL confirmed: CVE-2001-0797 (circl-sighting)
- CIRCL seen: CVE-2001-0797 (circl-sighting)
- CIRCL seen: CVE-2001-0797 (circl-sighting)
- CIRCL seen: CVE-2001-0797 (circl-sighting)
- CIRCL seen: CVE-2001-0797 (circl-sighting)
- 20011214 Sun Solaris login bug patches out (circl)
- CA-2001-34 (circl)
- 20011201-01-I (circl)
- 20011212 Buffer Overflow in /bin/login (circl)
…and 12 more exploits
Timeline
- Dec 12, 2001 CVE Published
- Dec 24, 2004 PoC Published
- Jun 22, 2010 PoC Published
- Jul 3, 2010 PoC Published
- Sep 23, 2010 PoC Published
- May 29, 2018 PoC Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
References
- ftp://patches.sgi.com/support/free/security/advisories/20011201-01-I technical
- oval:org.mitre.oval:def:2025 vdb
- CA-2001-34 third-party-advisory
- telnet-tab-bo(7284) vdb
- IY26221 vendor-advisory
- 20011214 Sun Solaris login bug patches out mailing-list
- CSSA-2001-SCO.40 vendor-advisory
- 20011219 Linux distributions and /bin/login overflow mailing-list
- 3681 vdb
- 20011212 Buffer Overflow in /bin/login third-party-advisory
- VU#569272 third-party-advisory
- 00213 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2001-0797 advisory