Vulnerability Description
HP NonStop Server G06.29, when running Standard Security T6533G06 before T6533G06^ABK, does not properly evaluate access permissions to OSS directories when no optional ACL entry exists, which allows local users to read arbitrary files.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Nonstop Server | g06.29 |
References
- http://securitytracker.com/id?1017135
- http://www.ciac.org/ciac/bulletins/r-027.shtmlVendor Advisory
- http://www.securityfocus.com/bid/20824
- http://www.vupen.com/english/advisories/2006/4301
- http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00795238
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29951
- http://securitytracker.com/id?1017135
- http://www.ciac.org/ciac/bulletins/r-027.shtmlVendor Advisory
- http://www.securityfocus.com/bid/20824
- http://www.vupen.com/english/advisories/2006/4301
- http://www2.itrc.hp.com/service/cki/docDisplay.do?docId=c00795238
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29951
FAQ
What is CVE-2006-5704?
CVE-2006-5704 is a vulnerability with a CVSS score of 6.2 (MEDIUM). HP NonStop Server G06.29, when running Standard Security T6533G06 before T6533G06^ABK, does not properly evaluate access permissions to OSS directories when no optional ACL entry exists, which allows ...
How severe is CVE-2006-5704?
CVE-2006-5704 has been rated MEDIUM with a CVSS base score of 6.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5704?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Nonstop Server.