The HP Tru64 UNIX implementation of "at" contains a locally exploitable buffer overflow.
"at" is used to run a job at a later time. A locally exploitable buffer overflow in "at" may permit a local attacker to gain elevated privileges and execute arbitrary code on a vulnerable host.
A local user may be able to gain elevated privileges and execute arbitrary code.
Apply a patch.
Thanks to KF for reporting this vulnerability.
|Date First Published:||2002-09-09|
|Date Last Updated:||2002-09-09 14:38 UTC|