CVE-2006-2829 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Hawk

3 documents3 sources

Severity

6.8MEDIUMNVD

EPSS

0.3%

top 49.38%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Tibco Hawk Tibco Runtime Agent

Timeline

PublishedJun 5

Latest updateMay 1

Description

Buffer overflow in Hawk Monitoring Agent (HMA) for TIBCO Hawk before 4.6.1 and TIBCO Runtime Agent (TRA) before 5.4 allows authenticated users to execute arbitrary code via the configuration for tibhawkhma.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.1 | Impact: 10.0

Affected Packages2 packages

▶NVDtibco/runtime_agent5.3

▶NVDtibco/hawk4.6.0

Patches

Patch: www.kb.cert.org ↗Patch: www.tibco.com ↗Patch: www.kb.cert.org ↗

🔴Vulnerability Details

GHSA

GHSA-f7xx-x7hj-2hmm: Buffer overflow in Hawk Monitoring Agent (HMA) for TIBCO Hawk before 4↗2022-05-01

▶

CVEList

CVE-2006-2829: Buffer overflow in Hawk Monitoring Agent (HMA) for TIBCO Hawk before 4↗2006-06-05

▶