Lucene search

[email protected]CVE-2006-2829

HistoryJun 05, 2006 - 8:06 p.m.

CVE-2006-2829

2006-06-0520:06:00

[email protected]

web.nvd.nist.gov

cve-2006-2829

buffer overflow

tibco hawk

hma

authentication

code execution

6.8 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.8%

JSON

Buffer overflow in Hawk Monitoring Agent (HMA) for TIBCO Hawk before 4.6.1 and TIBCO Runtime Agent (TRA) before 5.4 allows authenticated users to execute arbitrary code via the configuration for tibhawkhma.

Affected configurations

NVD

Node

tibcohawkMatch4.6.0

tibcohawk_monitoring_agent

tibcoruntime_agentMatch5.3

CPENameOperatorVersion
tibco:hawktibco hawkeq4.6.0
tibco:hawk_monitoring_agenttibco hawk monitoring agenteq*
tibco:runtime_agenttibco runtime agenteq5.3

CPE	Name	Operator	Version
tibco:hawk	tibco hawk	eq	4.6.0
tibco:hawk_monitoring_agent	tibco hawk monitoring agent	eq	*
tibco:runtime_agent	tibco runtime agent	eq	5.3

References

secunia.com/advisories/20431

securitytracker.com/id?1016223

www.kb.cert.org/vuls/id/620516

www.securityfocus.com/bid/18300

www.tibco.com/resources/mk/hawk_security_advisory.txt

www.vupen.com/english/advisories/2006/2156

exchange.xforce.ibmcloud.com/vulnerabilities/26938

6.8 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:S/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

46.8%

JSON

Related for CVE-2006-2829

cvelist1 prion1 nvd1