{"api_version":"1","generated_at":"2026-04-23T17:12:37+00:00","cve":"CVE-2006-2829","urls":{"html":"https://cve.report/CVE-2006-2829","api":"https://cve.report/api/cve/CVE-2006-2829.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2006-2829","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2006-2829"},"summary":{"title":"CVE-2006-2829","description":"Buffer overflow in Hawk Monitoring Agent (HMA) for TIBCO Hawk before 4.6.1 and TIBCO Runtime Agent (TRA) before 5.4 allows authenticated users to execute arbitrary code via the configuration for tibhawkhma.","state":"PUBLIC","assigner":"cve@mitre.org","published_at":"2006-06-05 20:06:00","updated_at":"2017-07-20 01:31:00"},"problem_types":["NVD-CWE-Other"],"metrics":[],"references":[{"url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/26938","name":"tibco-hawk-monagent-bo(26938)","refsource":"XF","tags":[],"title":"IBM X-Force Exchange","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.securityfocus.com/bid/18300","name":"18300","refsource":"BID","tags":[],"title":"TIBCO Hawk Configuration Interface Local Buffer Overflow Vulnerability","mime":"text/html","httpstatus":"200","archivestatus":"0"},{"url":"http://secunia.com/advisories/20431","name":"20431","refsource":"SECUNIA","tags":["Vendor Advisory"],"title":"TIBCO Hawk \"tibhawkhma\" Privilege Escalation Vulnerability - Advisories - Secunia","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.tibco.com/resources/mk/hawk_security_advisory.txt","name":"http://www.tibco.com/resources/mk/hawk_security_advisory.txt","refsource":"CONFIRM","tags":["Patch","Vendor Advisory"],"title":"404 Not Found","mime":"text/plain","httpstatus":"404","archivestatus":"200"},{"url":"http://www.kb.cert.org/vuls/id/620516","name":"VU#620516","refsource":"CERT-VN","tags":["Patch","US Government Resource"],"title":"US-CERT Vulnerability Note VU#620516","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://www.vupen.com/english/advisories/2006/2156","name":"ADV-2006-2156","refsource":"VUPEN","tags":[],"title":"Webmail : Solution de messagerie professionnelle - OVHcloud- OVH","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://securitytracker.com/id?1016223","name":"1016223","refsource":"SECTRACK","tags":[],"title":"SecurityTracker.com Archives - TIBCO Hawk Monitoring Agent Buffer Overflow May Let Local Users Gain Elevated Privileges","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2006-2829","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2006-2829","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2006","cve_id":"2829","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"tibco","cpe5":"hawk","cpe6":"4.6.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"2829","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"tibco","cpe5":"hawk","cpe6":"4.6.0","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"2829","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"tibco","cpe5":"hawk_monitoring_agent","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"2829","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"tibco","cpe5":"hawk_monitoring_agent","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"2829","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"tibco","cpe5":"runtime_agent","cpe6":"5.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2006","cve_id":"2829","vulnerable":"1","versionEndIncluding":"1","cpe1":"cpe","cpe2":"2.3","cpe3":"a","cpe4":"tibco","cpe5":"runtime_agent","cpe6":"5.3","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2006-2829","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Buffer overflow in Hawk Monitoring Agent (HMA) for TIBCO Hawk before 4.6.1 and TIBCO Runtime Agent (TRA) before 5.4 allows authenticated users to execute arbitrary code via the configuration for tibhawkhma."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"18300","refsource":"BID","url":"http://www.securityfocus.com/bid/18300"},{"name":"tibco-hawk-monagent-bo(26938)","refsource":"XF","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/26938"},{"name":"20431","refsource":"SECUNIA","url":"http://secunia.com/advisories/20431"},{"name":"http://www.tibco.com/resources/mk/hawk_security_advisory.txt","refsource":"CONFIRM","url":"http://www.tibco.com/resources/mk/hawk_security_advisory.txt"},{"name":"VU#620516","refsource":"CERT-VN","url":"http://www.kb.cert.org/vuls/id/620516"},{"name":"1016223","refsource":"SECTRACK","url":"http://securitytracker.com/id?1016223"},{"name":"ADV-2006-2156","refsource":"VUPEN","url":"http://www.vupen.com/english/advisories/2006/2156"}]}},"nvd":{"publishedDate":"2006-06-05 20:06:00","lastModifiedDate":"2017-07-20 01:31:00","problem_types":["NVD-CWE-Other"],"metrics":{"baseMetricV2":{"cvssV2":{"version":"2.0","vectorString":"AV:L/AC:L/Au:S/C:C/I:C/A:C","accessVector":"LOCAL","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE","baseScore":6.8},"severity":"MEDIUM","exploitabilityScore":3.1,"impactScore":10,"obtainAllPrivilege":true,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}},"configurations":{"CVE_data_version":"4.0","nodes":[{"operator":"OR","children":[],"cpe_match":[{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:tibco:hawk_monitoring_agent:*:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:tibco:hawk:4.6.0:*:*:*:*:*:*:*","cpe_name":[]},{"vulnerable":true,"cpe23Uri":"cpe:2.3:a:tibco:runtime_agent:5.3:*:*:*:*:*:*:*","cpe_name":[]}]}]}},"legacy_mitre":{"record":{"CveYear":"2006","CveId":"2829","Ordinal":"18149","Title":"CVE-2006-2829","CVE":"CVE-2006-2829","Year":"2006"},"notes":[{"CveYear":"2006","CveId":"2829","Ordinal":"1","NoteData":"Buffer overflow in Hawk Monitoring Agent (HMA) for TIBCO Hawk before 4.6.1 and TIBCO Runtime Agent (TRA) before 5.4 allows authenticated users to execute arbitrary code via the configuration for tibhawkhma.","Type":"Description","Title":null},{"CveYear":"2006","CveId":"2829","Ordinal":"2","NoteData":"2006-06-05","Type":"Other","Title":"Published"},{"CveYear":"2006","CveId":"2829","Ordinal":"3","NoteData":"2017-07-19","Type":"Other","Title":"Modified"}]}}}