PT-2006-6170 · Hewlett Packard · Dtmail+2
Publicado
2006-10-18
·
Atualizado
2018-10-17
·
CVE-2006-5452
CVSS v2.0
4.6
Média
| Vetor | AV:L/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
dtmail versions 4.0F through 5.1B on HP Tru64 UNIX
dtmail on HP-UX versions B.11.00 through B.11.23
Description
A buffer overflow issue exists, allowing local users to execute arbitrary code via a long -a argument.
Recommendations
For dtmail on HP Tru64 UNIX versions 4.0F through 5.1B, avoid using long -a arguments until a fix is available.
For dtmail on HP-UX versions B.11.00 through B.11.23, restrict the use of the -a argument to prevent exploitation.
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Hp Tru64 Unix
Hp-Ux
Dtmail