CVE-2006-6597
HyperAccess 8.4 - Command Injection
Title source: llmDescription
Argument injection vulnerability in HyperAccess 8.4 allows user-assisted remote attackers to execute arbitrary vbscript and commands via the /r option in a telnet:// URI, which is configured to use hawin32.exe.
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by Brett Moore · textremotewindows
https://www.exploit-db.com/exploits/29281
References (5)
Scores
EPSS
0.0393
EPSS Percentile
88.2%
Classification
CWE
CWE-88
Status
draft
Affected Products (1)
hilgraeve/hyperaccess
Timeline
Published
Dec 15, 2006
Tracked Since
Feb 18, 2026