Vulnerabilities > CVE-2006-5557 - Unspecified vulnerability in HP Hp-Ux 11.00/11.11/11.4
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN hp
exploit available
Summary
Stack-based buffer overflow in the (1) swpackage and (2) swmodify commands in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long -S argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to be certain.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| OS | 3 |
Exploit-Db
description HP-UX 11i (swmodify) Stack Overflow Local Root Exploit. CVE-2006-5557. Local exploit for hp-ux platform file exploits/hp-ux/local/2634.c id EDB-ID:2634 last seen 2016-01-31 modified 2006-10-24 platform hp-ux port published 2006-10-24 reporter prdelka source https://www.exploit-db.com/download/2634/ title HP-UX 11i swmodify Stack Overflow Local Root Exploit type local description HP-UX 11i (swpackage) Stack Overflow Local Root Exploit. CVE-2006-5557. Local exploit for hp-ux platform file exploits/hp-ux/local/2633.c id EDB-ID:2633 last seen 2016-01-31 modified 2006-10-24 platform hp-ux port published 2006-10-24 reporter prdelka source https://www.exploit-db.com/download/2633/ title HP-UX 11i swpackage Stack Overflow Local Root Exploit type local
Oval
| accepted | 2014-03-24T04:01:39.521-04:00 | ||||||||||||
| class | vulnerability | ||||||||||||
| contributors |
| ||||||||||||
| description | Stack-based buffer overflow in the (1) swpackage and (2) swmodify commands in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via a long -S argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to be certain. | ||||||||||||
| family | unix | ||||||||||||
| id | oval:org.mitre.oval:def:5035 | ||||||||||||
| status | accepted | ||||||||||||
| submitted | 2008-07-08T17:01:37.000-04:00 | ||||||||||||
| title | HP-UX Running Software Distributor Local Elevation of Privilege | ||||||||||||
| version | 40 |
References
- http://blogs.23.nu/prdelka/stories/13144/
- http://blogs.23.nu/prdelka/stories/13144/
- http://osvdb.org/33993
- http://osvdb.org/33993
- http://osvdb.org/33994
- http://osvdb.org/33994
- http://www.securityfocus.com/bid/20706
- http://www.securityfocus.com/bid/20706
- http://www.securityfocus.com/bid/20735
- http://www.securityfocus.com/bid/20735
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5035
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5035
- https://www.exploit-db.com/exploits/2633
- https://www.exploit-db.com/exploits/2633
- https://www.exploit-db.com/exploits/2634
- https://www.exploit-db.com/exploits/2634