Summary
The remote /bin/login seems to crash when it receives too many environment variables.
An attacker may use this flaw to gain a root shell on this system.
Solution
Contact your vendor for a patch (or read the CERT advisory)
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2001-0797 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities