CVE-2006-5558

2006-10-2716:07:00

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

Confidence

Low

EPSS

0.002

Percentile

62.0%

JSON

Format string vulnerability in the swask command in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via format string specifiers in the -s argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to be certain.

Affected configurations

Nvd

Node

hphp-uxMatch11.00

hphp-uxMatch11.4

hphp-uxMatch11.11

hphp-uxMatch11.23ia64_64-bit

VendorProductVersionCPE
hphp-ux11.00cpe:2.3:o:hp:hp-ux:11.00:*:*:*:*:*:*:*
hphp-ux11.4cpe:2.3:o:hp:hp-ux:11.4:*:*:*:*:*:*:*
hphp-ux11.11cpe:2.3:o:hp:hp-ux:11.11:*:*:*:*:*:*:*
hphp-ux11.23cpe:2.3:o:hp:hp-ux:11.23:*:ia64_64-bit:*:*:*:*:*

Vendor	Product	Version	CPE
hp	hp-ux	11.00	cpe:2.3:o:hp:hp-ux:11.00:::::::*
hp	hp-ux	11.4	cpe:2.3:o:hp:hp-ux:11.4:::::::*
hp	hp-ux	11.11	cpe:2.3:o:hp:hp-ux:11.11:::::::*
hp	hp-ux	11.23	cpe:2.3:o:hp:hp-ux:11.23::ia64_64-bit:::::