4.6

CVE-2006-5452

Buffer overflow in dtmail on HP Tru64 UNIX 4.0F through 5.1B and HP-UX B.11.00 through B.11.23 allows local users to execute arbitrary code via a long -a (aka attachment) argument.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
HpHp-ux Version11.00
HpHp-ux Version11.4
HpHp-ux Version11.11
HpHp-ux Version11.22
HpHp-ux Version11.23 Editionia64_64-bit
HpTru64 Version4.0f
HpTru64 Version4.0f Updatepk8
HpTru64 Version4.0g
HpTru64 Version4.0g Updatepk4
HpTru64 Version5.0a
HpTru64 Version5.1
HpTru64 Version5.1a
HpTru64 Version5.1a Updatepk6
HpTru64 Version5.1af
HpTru64 Version5.1b Updatepk1
HpTru64 Version5.1b2 Updatepk4
HpTru64 Version5.1b3
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 0.59% 0.435
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 4.6 3.9 6.4
AV:L/AC:L/Au:N/C:P/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00793091
http://secunia.com/advisories/22451
http://secunia.com/advisories/22528
http://securitytracker.com/id?1017083
http://securitytracker.com/id?1017098
Patch
http://securitytracker.com/id?1017099
Patch
http://www.netragard.com/pdfs/research/HP-TRU64-DTMAIL-20060810.txt
Vendor Advisory
http://www.securityfocus.com/archive/1/449321/100/0/threaded
http://www.securityfocus.com/bid/20580
http://www.vupen.com/english/advisories/2006/4139
http://www.vupen.com/english/advisories/2006/4140
https://exchange.xforce.ibmcloud.com/vulnerabilities/29644
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5175