Vulnerabilities > CVE-2006-0177 - Local Command Line Argument Buffer Overflow vulnerability in Cray Unicos 9.0.2.2

CVSS 7.2 - HIGH

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

local

low complexity

cray

exploit available

NVD

Published: 2006-01-11

Updated: 2017-07-20

Summary

Multiple buffer overflows in Cray UNICOS 9.0.2.2 might allow local users to gain privileges by (1) invoking /usr/bin/script with a long command line argument or (2) setting the -c option of /etc/nu to the name of a file containing a long line.

Vulnerable Configurations

Part	Description	Count
OS	Cray Cray Unicos 9.0.2.2	1

Exploit-Db

description	Cray UNICOS /etc/nu -c Option Filename Processing Local Overflow. CVE-2006-0177. Local exploit for linux platform
id	EDB-ID:27066
last seen	2016-02-03
modified	2006-01-10
published	2006-01-10
reporter	Micheal Turner
source	https://www.exploit-db.com/download/27066/
title	Cray UNICOS /etc/nu -c Option Filename Processing Local Overflow

description	Cray UNICOS /usr/bin/script Command Line Argument Local Overflow. CVE-2006-0177. Local exploit for linux platform
id	EDB-ID:27065
last seen	2016-02-03
modified	2006-01-10
published	2006-01-10
reporter	Micheal Turner
source	https://www.exploit-db.com/download/27065/
title	Cray UNICOS /usr/bin/script Command Line Argument Local Overflow

Summary

Vulnerable Configurations

Exploit-Db

References