Vulnerabilities > CVE-2006-5558 - Unspecified vulnerability in HP Hp-Ux

047910
CVSS 0.0 - NONE
Attack vector
UNKNOWN
Attack complexity
UNKNOWN
Privileges required
UNKNOWN
Confidentiality impact
UNKNOWN
Integrity impact
UNKNOWN
Availability impact
UNKNOWN
hp
exploit available
NVD
Published: 2006-10-27
Updated: 2024-11-21

Summary

Format string vulnerability in the swask command in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via format string specifiers in the -s argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to be certain.

Vulnerable Configurations

Part Description Count
OS
Hp
4

Exploit-Db

descriptionHP-UX 11i (swask) Format String Local Root Exploit. CVE-2006-5558. Local exploit for hp-ux platform
fileexploits/hp-ux/local/2635.c
idEDB-ID:2635
last seen2016-01-31
modified2006-10-24
platformhp-ux
port
published2006-10-24
reporterprdelka
sourcehttps://www.exploit-db.com/download/2635/
titleHP-UX 11i swask Format String Local Root Exploit
typelocal

Oval

accepted2014-03-24T04:01:47.756-04:00
classvulnerability
contributors
  • nameMichael Wood
    organizationHewlett-Packard
  • nameSushant Kumar Singh
    organizationHewlett-Packard
  • nameSushant Kumar Singh
    organizationHewlett-Packard
descriptionFormat string vulnerability in the swask command in HP-UX B.11.11 and possibly other versions allows local users to execute arbitrary code via format string specifiers in the -s argument. NOTE: this might be a duplicate of CVE-2006-2574, but the details relating to CVE-2006-2574 are too vague to be certain.
familyunix
idoval:org.mitre.oval:def:5804
statusaccepted
submitted2008-07-08T17:01:37.000-04:00
titleHP-UX Running Software Distributor Local Elevation of Privilege
version40

References