ByteOS Network

Vulnerability Details :

CVE-2006-5782

Assigner-mitre

Assigner Org ID-8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At-09 Nov, 2006 | 00:00

Updated At-07 Aug, 2024 | 20:04

radexecd.exe in HP OpenView Client Configuraton Manager (CCM) does not require authentication before executing commands in the installation directory, which allows remote attackers to cause a denial of service (reboot) by calling radbootw.exe or create arbitrary files by calling radcrecv.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:mitre

Assigner Org ID:8254265b-2729-46b6-b9e3-3dfca2d5bfca

Published At:09 Nov, 2006 | 00:00

Updated At:07 Aug, 2024 | 20:04

▼CVE Numbering Authority (CNA)

Affected Products

Vendor

n/a

Product

n/a

Versions

Affected

Problem Types

Type	CWE ID	Description
text	N/A	n/a

Type: text

CWE ID: N/A

Description: n/a

References

Hyperlink	Resource
http://www.securityfocus.com/archive/1/450942/100/0/threaded	mailing-list x_refsource_BUGTRAQ
http://secunia.com/advisories/22780	third-party-advisory x_refsource_SECUNIA
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552	vendor-advisory x_refsource_HP
http://securityreason.com/securityalert/1842	third-party-advisory x_refsource_SREASON
http://www.vupen.com/english/advisories/2006/4410	vdb-entry x_refsource_VUPEN
https://exchange.xforce.ibmcloud.com/vulnerabilities/30138	vdb-entry x_refsource_XF
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552	vendor-advisory x_refsource_HP
http://securitytracker.com/id?1017197	vdb-entry x_refsource_SECTRACK

Hyperlink: http://www.securityfocus.com/archive/1/450942/100/0/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

Hyperlink: http://secunia.com/advisories/22780

Resource:

third-party-advisory

x_refsource_SECUNIA

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://securityreason.com/securityalert/1842

Resource:

third-party-advisory

x_refsource_SREASON

Hyperlink: http://www.vupen.com/english/advisories/2006/4410

Resource:

vdb-entry

x_refsource_VUPEN

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/30138

Resource:

vdb-entry

x_refsource_XF

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552

Resource:

vendor-advisory

x_refsource_HP

Hyperlink: http://securitytracker.com/id?1017197

Resource:

vdb-entry

x_refsource_SECTRACK

▼Authorized Data Publishers (ADP)

CVE Program Container

References

Hyperlink	Resource
http://www.securityfocus.com/archive/1/450942/100/0/threaded	mailing-list x_refsource_BUGTRAQ x_transferred
http://secunia.com/advisories/22780	third-party-advisory x_refsource_SECUNIA x_transferred
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552	vendor-advisory x_refsource_HP x_transferred
http://securityreason.com/securityalert/1842	third-party-advisory x_refsource_SREASON x_transferred
http://www.vupen.com/english/advisories/2006/4410	vdb-entry x_refsource_VUPEN x_transferred
https://exchange.xforce.ibmcloud.com/vulnerabilities/30138	vdb-entry x_refsource_XF x_transferred
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552	vendor-advisory x_refsource_HP x_transferred
http://securitytracker.com/id?1017197	vdb-entry x_refsource_SECTRACK x_transferred

Hyperlink: http://www.securityfocus.com/archive/1/450942/100/0/threaded

Resource:

mailing-list

x_refsource_BUGTRAQ

x_transferred

Hyperlink: http://secunia.com/advisories/22780

Resource:

third-party-advisory

x_refsource_SECUNIA

x_transferred

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://securityreason.com/securityalert/1842

Resource:

third-party-advisory

x_refsource_SREASON

x_transferred

Hyperlink: http://www.vupen.com/english/advisories/2006/4410

Resource:

vdb-entry

x_refsource_VUPEN

x_transferred

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/30138

Resource:

vdb-entry

x_refsource_XF

x_transferred

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552

Resource:

vendor-advisory

x_refsource_HP

x_transferred

Hyperlink: http://securitytracker.com/id?1017197

Resource:

vdb-entry

x_refsource_SECTRACK

x_transferred

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:cve@mitre.org

Published At:09 Nov, 2006 | 00:07

Updated At:17 Oct, 2018 | 21:45

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	7.8	HIGH	AV:N/AC:L/Au:N/C:N/I:N/A:C

Type: Primary

Version: 2.0

Base score: 7.8

Base severity: HIGH

Vector:

AV:N/AC:L/Au:N/C:N/I:N/A:C

CPE Matches

HP Inc.

>>openview_client_configuraton_manager>>*

cpe:2.3:a:hp:openview_client_configuraton_manager:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
NVD-CWE-Other	Primary	nvd@nist.gov

CWE ID: NVD-CWE-Other

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552	cve@mitre.org	N/A
http://secunia.com/advisories/22780	cve@mitre.org	N/A
http://securityreason.com/securityalert/1842	cve@mitre.org	N/A
http://securitytracker.com/id?1017197	cve@mitre.org	N/A
http://www.securityfocus.com/archive/1/450942/100/0/threaded	cve@mitre.org	N/A
http://www.vupen.com/english/advisories/2006/4410	cve@mitre.org	N/A
https://exchange.xforce.ibmcloud.com/vulnerabilities/30138	cve@mitre.org	N/A

Hyperlink: http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c00795552

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://secunia.com/advisories/22780

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://securityreason.com/securityalert/1842

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://securitytracker.com/id?1017197

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.securityfocus.com/archive/1/450942/100/0/threaded

Source: cve@mitre.org

Resource: N/A

Hyperlink: http://www.vupen.com/english/advisories/2006/4410

Source: cve@mitre.org

Resource: N/A

Hyperlink: https://exchange.xforce.ibmcloud.com/vulnerabilities/30138

Source: cve@mitre.org

Resource: N/A

Similar CVEs

54Records found

CVE-2007-2656

Matching Score-8

Assigner-MITRE Corporation

View Details

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-7.8||HIGH

EPSS-17.81% / 94.96%

7 Day CHG~0.00%

Published-14 May, 2007 | 23:00

Updated-07 Aug, 2024 | 13:49

Stack-based buffer overflow in the Hewlett-Packard (HP) Magview ActiveX control in hpqvwocx.dll 1.0.0.309 allows remote attackers to cause a denial of service (application crash) and possibly have other impact via a long argument to the DeleteProfile method.

Vendor-n/a HP Inc.

Product-hpqvwocx.dll n/a

CVE-2007-2502

Matching Score-8

Assigner-MITRE Corporation

View Details

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-7.8||HIGH

EPSS-2.84% / 85.88%

7 Day CHG~0.00%

Published-04 May, 2007 | 01:00

Updated-07 Aug, 2024 | 13:42

Unspecified vulnerability in HP ProCurve 9300m Series switches with software 08.0.01c through 08.0.01j allows remote attackers to cause a denial of service via unknown vectors, a different switch series than CVE-2006-4015.

Vendor-n/a HP Inc.

Product-procurve_switch_9300m n/a

CVE-2006-6742

Matching Score-8

Assigner-MITRE Corporation

View Details

Matching Score-8

Assigner-MITRE Corporation

CVSS Score-7.8||HIGH

EPSS-1.98% / 83.23%

7 Day CHG~0.00%

Published-26 Dec, 2006 | 23:00

Updated-07 Aug, 2024 | 20:34

Multiple buffer overflows in FTP Print Server 2.4 and 2.4.5 in HP LaserJet 5000 Series printers with firmware R.25.15 or R.25.47, and HP LaserJet 5100 Series printers with firmware V.29.12, allow remote attackers to cause a denial of service (device crash) via a long string in the (1) LIST or (2) NLST command.

Vendor-n/a HP Inc.

Product-laserjet_5000 ftp_print_server laserjet_5100 n/a

CVE-2018-7093

Matching Score-8

Assigner-Hewlett Packard Enterprise (HPE)

View Details

Matching Score-8

Assigner-Hewlett Packard Enterprise (HPE)

CVSS Score-8.6||HIGH

EPSS-3.97% / 88.11%

7 Day CHG~0.00%

Published-14 Aug, 2018 | 14:00

Updated-05 Aug, 2024 | 06:17

A security vulnerability in HPE Integrated Lights-Out 3 prior to v1.90, iLO 4 prior to v2.60, iLO 5 prior to v1.30, Moonshot Chassis Manager firmware prior to v1.58, and Moonshot Component Pack prior to v2.55 could be remotely exploited to create a denial of service.

Vendor-HP Inc.Hewlett Packard Enterprise (HPE)

Product-moonshot_component_pack moonshot_component_pack_firmware integrated_lights-out integrated_lights-out_5_firmware integrated_lights-out_3_firmware moonshot_chassis_manager_firmware integrated_lights-out_4_firmware iLO 5 for HPE Gen10 Servers, iLO 4, iLO 3, Moonshot Chassis Management Firmware, Moonshot Component Packs for HPE ProLiant m510 and m710x server cartridges

CVE-2006-5782

Credits

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs