Unrated severityNVD Advisory· Published Oct 5, 2006· Updated Apr 23, 2026
CVE-2006-5156
CVE-2006-5156
Description
Buffer overflow in McAfee ePolicy Orchestrator before 3.5.0.720 and ProtectionPilot before 1.1.1.126 allows remote attackers to execute arbitrary code via a request to /spipe/pkg/ with a long source header.
Affected products
4cpe:2.3:a:mcafee:epolicy_orchestrator:3.0:*:*:*:*:*:*:*+ 2 more
- cpe:2.3:a:mcafee:epolicy_orchestrator:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:mcafee:epolicy_orchestrator:3.0:sp2a:*:*:*:*:*:*
- cpe:2.3:a:mcafee:epolicy_orchestrator:3.5.0:*:*:*:*:*:*:*
- cpe:2.3:a:mcafee:protectionpilot:1.1.1:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
14- download.nai.com/products/patches/ePO/v3.5/EPO3506.txtnvdPatch
- download.nai.com/products/patches/protectionpilot/v1.1.1/PRP1113.txtnvdPatch
- knowledge.mcafee.com/SupportSite/search.donvdPatch
- www.remote-exploit.org/advisories/mcafee-epo.pdfnvdExploit
- www.securityfocus.com/bid/20288nvdExploitPatch
- secunia.com/advisories/22222nvdVendor Advisory
- www.kb.cert.org/vuls/id/842452nvdUS Government Resource
- knowledge.mcafee.com/article/365/8611438_f.SAL_Public.htmlnvd
- lists.grok.org.uk/pipermail/full-disclosure/2006-October/049803.htmlnvd
- securitytracker.com/idnvd
- securitytracker.com/idnvd
- www.osvdb.org/29421nvd
- www.vupen.com/english/advisories/2006/3861nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/29307nvd
News mentions
0No linked articles in our index yet.