Multiple buffer overflows in HP Tru64 UNIX 5.1a, 5.1, 5.0a, 4.0g, and 4.0f allow local users to gain root privileges via (1) su, (2) chsh, (3) passwd, (4) chfn, (5) dxchpwd, and (6) libc.
https://exchange.xforce.ibmcloud.com/vulnerabilities/11620
https://exchange.xforce.ibmcloud.com/vulnerabilities/10614
http://www.securityfocus.com/bid/5382
http://www.securityfocus.com/bid/5381
http://www.securityfocus.com/bid/5380
http://www.securityfocus.com/bid/5379
http://www.securityfocus.com/archive/1/290115
http://www.kb.cert.org/vuls/id/864083
http://www.kb.cert.org/vuls/id/193347
http://archives.neohapsis.com/archives/tru64/2002-q3/0019.html
http://archives.neohapsis.com/archives/fulldisclosure/2002-q3/1203.html