cvelistv5 - cve-2006-6076

CVE-2006-6076 (GCVE-0-2006-6076)

Vulnerability from cvelistv5 – Published: 2006-11-24 17:00 – Updated: 2024-08-07 20:12

Summary

Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://www.securityfocus.com/bid/21221	vdb-entryx_refsource_BID
	http://www.securityfocus.com/archive/1/452318/100…	mailing-listx_refsource_BUGTRAQ
	https://exchange.xforce.ibmcloud.com/vulnerabilit…	vdb-entryx_refsource_XF
	http://secunia.com/advisories/24512	third-party-advisoryx_refsource_SECUNIA
	http://lists.grok.org.uk/pipermail/full-disclosur…	mailing-listx_refsource_FULLDISC
	http://www3.ca.com/securityadvisor/vulninfo/vuln.…	x_refsource_CONFIRM
	http://www.securityfocus.com/archive/1/456711	mailing-listx_refsource_BUGTRAQ
	http://securitytracker.com/id?1017268	vdb-entryx_refsource_SECTRACK
	http://secunia.com/advisories/23060	third-party-advisoryx_refsource_SECUNIA
	http://www.vupen.com/english/advisories/2006/4654	vdb-entryx_refsource_VUPEN
	http://www3.ca.com/securityadvisor/newsinfo/colla…	x_refsource_CONFIRM
	http://lists.grok.org.uk/pipermail/full-disclosur…	mailing-listx_refsource_FULLDISC
	http://www.securityfocus.com/archive/1/452222/100…	mailing-listx_refsource_BUGTRAQ
	http://www.kb.cert.org/vuls/id/437300	third-party-advisoryx_refsource_CERT-VN
	http://supportconnectw.ca.com/public/storage/info…	x_refsource_CONFIRM

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T20:12:31.666Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "21221",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/21221"
          },
          {
            "name": "20061122 RE: LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/452318/100/0/threaded"
          },
          {
            "name": "cabrightstorarcserve-tapeeng-bo(30453)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30453"
          },
          {
            "name": "24512",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/24512"
          },
          {
            "name": "20061122 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817"
          },
          {
            "name": "20070111 [CAID 34955, 34956, 34957, 34958, 34959, 34817]: CA BrightStor ARCserve Backup Multiple Overflow Vulnerabilities",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/456711"
          },
          {
            "name": "1017268",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1017268"
          },
          {
            "name": "23060",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/23060"
          },
          {
            "name": "ADV-2006-4654",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2006/4654"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"
          },
          {
            "name": "20061121 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html"
          },
          {
            "name": "20061121 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/452222/100/0/threaded"
          },
          {
            "name": "VU#437300",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/437300"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2006-11-21T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-17T20:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "21221",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/21221"
        },
        {
          "name": "20061122 RE: LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/452318/100/0/threaded"
        },
        {
          "name": "cabrightstorarcserve-tapeeng-bo(30453)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30453"
        },
        {
          "name": "24512",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/24512"
        },
        {
          "name": "20061122 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817"
        },
        {
          "name": "20070111 [CAID 34955, 34956, 34957, 34958, 34959, 34817]: CA BrightStor ARCserve Backup Multiple Overflow Vulnerabilities",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/456711"
        },
        {
          "name": "1017268",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1017268"
        },
        {
          "name": "23060",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/23060"
        },
        {
          "name": "ADV-2006-4654",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2006/4654"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"
        },
        {
          "name": "20061121 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html"
        },
        {
          "name": "20061121 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/452222/100/0/threaded"
        },
        {
          "name": "VU#437300",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/437300"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-6076",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "21221",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/21221"
            },
            {
              "name": "20061122 RE: LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/452318/100/0/threaded"
            },
            {
              "name": "cabrightstorarcserve-tapeeng-bo(30453)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30453"
            },
            {
              "name": "24512",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/24512"
            },
            {
              "name": "20061122 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
              "refsource": "FULLDISC",
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html"
            },
            {
              "name": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817",
              "refsource": "CONFIRM",
              "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817"
            },
            {
              "name": "20070111 [CAID 34955, 34956, 34957, 34958, 34959, 34817]: CA BrightStor ARCserve Backup Multiple Overflow Vulnerabilities",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/456711"
            },
            {
              "name": "1017268",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1017268"
            },
            {
              "name": "23060",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/23060"
            },
            {
              "name": "ADV-2006-4654",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2006/4654"
            },
            {
              "name": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317",
              "refsource": "CONFIRM",
              "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"
            },
            {
              "name": "20061121 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
              "refsource": "FULLDISC",
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html"
            },
            {
              "name": "20061121 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/452222/100/0/threaded"
            },
            {
              "name": "VU#437300",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/437300"
            },
            {
              "name": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp",
              "refsource": "CONFIRM",
              "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2006-6076",
    "datePublished": "2006-11-24T17:00:00",
    "dateReserved": "2006-11-24T00:00:00",
    "dateUpdated": "2024-08-07T20:12:31.666Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*\", \"versionEndIncluding\": \"11.5\", \"matchCriteriaId\": \"0A72E07D-2997-46CF-847F-899CB60FC771\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E37161BE-6AF5-40E0-BD63-2C17431D8B36\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*\", \"matchCriteriaId\": \"4305BA3B-B302-48EA-A923-EEC762DA42ED\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ca:brightstor_arcserve_backup:11:*:windows:*:*:*:*:*\", \"matchCriteriaId\": \"6E236148-4A57-4FDC-A072-A77D3DD2DB53\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ca:brightstor_arcserve_backup:11.1:*:windows:*:*:*:*:*\", \"matchCriteriaId\": \"9E11A387-BF4A-4A54-8F29-37EFF14D72DD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.0:*:sql:*:*:*:*:*\", \"matchCriteriaId\": \"E8D21407-0C60-4598-87D4-1386E4C20E0B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.1:*:sql:*:*:*:*:*\", \"matchCriteriaId\": \"5C80D603-C650-465E-A9FD-34BA6E36335A\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer en Tape Engine (tapeeng.exe) en Computer Associates BrightStor ARCserve Backup 11.5 permite a un atacante remoto ejecutar c\\u00f3digo de su elecci\\u00f3n a trav\\u00e9s de ciertas RPC al puerto TCP 6502.\"}]",
      "evaluatorSolution": "A denial-of-service condition may also result from exploit attempts.",
      "id": "CVE-2006-6076",
      "lastModified": "2024-11-21T00:21:42.297",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 10.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": true, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2006-11-24T17:07:00.000",
      "references": "[{\"url\": \"http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/23060\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/24512\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://securitytracker.com/id?1017268\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/437300\", \"source\": \"cve@mitre.org\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.securityfocus.com/archive/1/452222/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/452318/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/456711\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/21221\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/4654\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817\", \"source\": \"cve@mitre.org\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/30453\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/23060\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://secunia.com/advisories/24512\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://securitytracker.com/id?1017268\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.kb.cert.org/vuls/id/437300\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.securityfocus.com/archive/1/452222/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/452318/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/456711\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/21221\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2006/4654\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/30453\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2006-6076\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2006-11-24T17:07:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer en Tape Engine (tapeeng.exe) en Computer Associates BrightStor ARCserve Backup 11.5 permite a un atacante remoto ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de ciertas RPC al puerto TCP 6502.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*\",\"versionEndIncluding\":\"11.5\",\"matchCriteriaId\":\"0A72E07D-2997-46CF-847F-899CB60FC771\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E37161BE-6AF5-40E0-BD63-2C17431D8B36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*\",\"matchCriteriaId\":\"4305BA3B-B302-48EA-A923-EEC762DA42ED\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ca:brightstor_arcserve_backup:11:*:windows:*:*:*:*:*\",\"matchCriteriaId\":\"6E236148-4A57-4FDC-A072-A77D3DD2DB53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ca:brightstor_arcserve_backup:11.1:*:windows:*:*:*:*:*\",\"matchCriteriaId\":\"9E11A387-BF4A-4A54-8F29-37EFF14D72DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.0:*:sql:*:*:*:*:*\",\"matchCriteriaId\":\"E8D21407-0C60-4598-87D4-1386E4C20E0B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.1:*:sql:*:*:*:*:*\",\"matchCriteriaId\":\"5C80D603-C650-465E-A9FD-34BA6E36335A\"}]}]}],\"references\":[{\"url\":\"http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/23060\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/24512\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://securitytracker.com/id?1017268\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.kb.cert.org/vuls/id/437300\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.securityfocus.com/archive/1/452222/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/452318/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/456711\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/21221\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/4654\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817\",\"source\":\"cve@mitre.org\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/30453\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/23060\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://secunia.com/advisories/24512\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://securitytracker.com/id?1017268\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.kb.cert.org/vuls/id/437300\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.securityfocus.com/archive/1/452222/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/452318/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/456711\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/21221\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2006/4654\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/30453\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorSolution\":\"A denial-of-service condition may also result from exploit attempts.\"}}"
  }
}

FKIE_CVE-2006-6076

Vulnerability from fkie_nvd - Published: 2006-11-24 17:07 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html
cve@mitre.org	http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html
cve@mitre.org	http://secunia.com/advisories/23060	Vendor Advisory
cve@mitre.org	http://secunia.com/advisories/24512
cve@mitre.org	http://securitytracker.com/id?1017268
cve@mitre.org	http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp
cve@mitre.org	http://www.kb.cert.org/vuls/id/437300	US Government Resource
cve@mitre.org	http://www.securityfocus.com/archive/1/452222/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/452318/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/archive/1/456711
cve@mitre.org	http://www.securityfocus.com/bid/21221
cve@mitre.org	http://www.vupen.com/english/advisories/2006/4654
cve@mitre.org	http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317
cve@mitre.org	http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/30453
af854a3a-2127-422b-91ae-364da2661108	http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html
af854a3a-2127-422b-91ae-364da2661108	http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/23060	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/24512
af854a3a-2127-422b-91ae-364da2661108	http://securitytracker.com/id?1017268
af854a3a-2127-422b-91ae-364da2661108	http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/437300	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/452222/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/452318/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/456711
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/21221
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2006/4654
af854a3a-2127-422b-91ae-364da2661108	http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317
af854a3a-2127-422b-91ae-364da2661108	http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/30453

Impacted products

Vendor	Product	Version
broadcom	brightstor_arcserve_backup	*
broadcom	brightstor_arcserve_backup	11.1
broadcom	brightstor_arcserve_backup	11.5
ca	brightstor_arcserve_backup	11
ca	brightstor_arcserve_backup	11.1
ca	brightstor_arcserve_backup_agent	11.0
ca	brightstor_arcserve_backup_agent	11.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "0A72E07D-2997-46CF-847F-899CB60FC771",
              "versionEndIncluding": "11.5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "E37161BE-6AF5-40E0-BD63-2C17431D8B36",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*",
              "matchCriteriaId": "4305BA3B-B302-48EA-A923-EEC762DA42ED",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ca:brightstor_arcserve_backup:11:*:windows:*:*:*:*:*",
              "matchCriteriaId": "6E236148-4A57-4FDC-A072-A77D3DD2DB53",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ca:brightstor_arcserve_backup:11.1:*:windows:*:*:*:*:*",
              "matchCriteriaId": "9E11A387-BF4A-4A54-8F29-37EFF14D72DD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.0:*:sql:*:*:*:*:*",
              "matchCriteriaId": "E8D21407-0C60-4598-87D4-1386E4C20E0B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.1:*:sql:*:*:*:*:*",
              "matchCriteriaId": "5C80D603-C650-465E-A9FD-34BA6E36335A",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de b\u00fafer en Tape Engine (tapeeng.exe) en Computer Associates BrightStor ARCserve Backup 11.5 permite a un atacante remoto ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de ciertas RPC al puerto TCP 6502."
    }
  ],
  "evaluatorSolution": "A denial-of-service condition may also result from exploit attempts.",
  "id": "CVE-2006-6076",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2006-11-24T17:07:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/23060"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/24512"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://securitytracker.com/id?1017268"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/437300"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/452222/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/452318/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/456711"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/21221"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2006/4654"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30453"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/23060"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/24512"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://securitytracker.com/id?1017268"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/437300"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/452222/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/452318/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/456711"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/21221"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2006/4654"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30453"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2006-6076

Vulnerability from gsd - Updated: 2023-12-13 01:19

Details

Aliases

CVE-2006-6076

Aliases

CVE-2006-6076

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2006-6076",
    "description": "Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502.",
    "id": "GSD-2006-6076",
    "references": [
      "https://packetstormsecurity.com/files/cve/CVE-2006-6076"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2006-6076"
      ],
      "details": "Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502.",
      "id": "GSD-2006-6076",
      "modified": "2023-12-13T01:19:54.088263Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2006-6076",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "21221",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/21221"
          },
          {
            "name": "20061122 RE: LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/452318/100/0/threaded"
          },
          {
            "name": "cabrightstorarcserve-tapeeng-bo(30453)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30453"
          },
          {
            "name": "24512",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/24512"
          },
          {
            "name": "20061122 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
            "refsource": "FULLDISC",
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html"
          },
          {
            "name": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817",
            "refsource": "CONFIRM",
            "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817"
          },
          {
            "name": "20070111 [CAID 34955, 34956, 34957, 34958, 34959, 34817]: CA BrightStor ARCserve Backup Multiple Overflow Vulnerabilities",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/456711"
          },
          {
            "name": "1017268",
            "refsource": "SECTRACK",
            "url": "http://securitytracker.com/id?1017268"
          },
          {
            "name": "23060",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/23060"
          },
          {
            "name": "ADV-2006-4654",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2006/4654"
          },
          {
            "name": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317",
            "refsource": "CONFIRM",
            "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"
          },
          {
            "name": "20061121 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
            "refsource": "FULLDISC",
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html"
          },
          {
            "name": "20061121 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/452222/100/0/threaded"
          },
          {
            "name": "VU#437300",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/437300"
          },
          {
            "name": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp",
            "refsource": "CONFIRM",
            "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:ca:brightstor_arcserve_backup:11:*:windows:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.0:*:sql:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ca:brightstor_arcserve_backup:11.1:*:windows:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.1:*:sql:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "11.5",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2006-6076"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20061121 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
              "refsource": "FULLDISC",
              "tags": [],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html"
            },
            {
              "name": "20061122 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
              "refsource": "FULLDISC",
              "tags": [],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html"
            },
            {
              "name": "VU#437300",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/437300"
            },
            {
              "name": "21221",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/21221"
            },
            {
              "name": "1017268",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://securitytracker.com/id?1017268"
            },
            {
              "name": "23060",
              "refsource": "SECUNIA",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://secunia.com/advisories/23060"
            },
            {
              "name": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"
            },
            {
              "name": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"
            },
            {
              "name": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817"
            },
            {
              "name": "24512",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/24512"
            },
            {
              "name": "20070111 [CAID 34955, 34956, 34957, 34958, 34959, 34817]: CA BrightStor ARCserve Backup Multiple Overflow Vulnerabilities",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/456711"
            },
            {
              "name": "ADV-2006-4654",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2006/4654"
            },
            {
              "name": "cabrightstorarcserve-tapeeng-bo(30453)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30453"
            },
            {
              "name": "20061122 RE: LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/452318/100/0/threaded"
            },
            {
              "name": "20061121 LS-20061113 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/452222/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": true,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2021-04-07T18:14Z",
      "publishedDate": "2006-11-24T17:07Z"
    }
  }
}

CERTA-2007-AVI-133

Vulnerability from certfr_avis - Published: - Updated:

Quatre vulnérabilités dans BrightStor ARCserve peuvent être exploitées par une personne malintentionnée distante afin d'effectuer un déni de service ou une exécution de code arbitraire.

Description

Quatre vulnérabilités ont été identifiées dans BrightStor ARCserve :

un débordement de tampon possible dans le service Tape Engine qui permet l'exécution de code arbitraire ;
une corruption de mémoire dans le traitement de procédures RPC par le service Tape Engine qui cause un déni de service et potentiellement l'exécution de code arbitraire ;
un mauvais traitement de paramètres par le service catirpc.dll qui permet à un attaquant d'envoyer des requêtes malformées pour causer un déni de service ;
une fonction RPC, pouvant être appelée par une personne malintentionnée distante, qui éteint le service Tape Engine.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	N/A	CA Server Protection Suite r2 ;
Cisco	N/A	BrightStor Enterprise Backup r10.5 ;
Cisco	Small Business	CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2 ;
N/A	N/A	BrightStor ARCserve Backup r11.5 ;
Microsoft	Windows	BrightStor ARCserve Backup r11 for Windows ;
N/A	N/A	BrightStor ARCserve Backup r9.01 ;
Cisco	Small Business	CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2.
N/A	N/A	BrightStor ARCserve Backup r11.1 ;
Cisco	N/A	CA Business Protection Suite r2 ;

References

Title

Publication Time

Tags

Bulletin de sécurité de CA du 15 mars 2007

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "CA Server Protection Suite r2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "BrightStor Enterprise Backup r10.5 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2 ;",
      "product": {
        "name": "Small Business",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "BrightStor ARCserve Backup r11.5 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "BrightStor ARCserve Backup r11 for Windows ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "BrightStor ARCserve Backup r9.01 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2.",
      "product": {
        "name": "Small Business",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "BrightStor ARCserve Backup r11.1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "CA Business Protection Suite r2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nQuatre vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans BrightStor ARCserve :\n\n-   un d\u00e9bordement de tampon possible dans le service Tape Engine qui\n    permet l\u0027ex\u00e9cution de code arbitraire ;\n-   une corruption de m\u00e9moire dans le traitement de proc\u00e9dures RPC par\n    le service Tape Engine qui cause un d\u00e9ni de service et\n    potentiellement l\u0027ex\u00e9cution de code arbitraire ;\n-   un mauvais traitement de param\u00e8tres par le service catirpc.dll qui\n    permet \u00e0 un attaquant d\u0027envoyer des requ\u00eates malform\u00e9es pour causer\n    un d\u00e9ni de service ;\n-   une fonction RPC, pouvant \u00eatre appel\u00e9e par une personne\n    malintentionn\u00e9e distante, qui \u00e9teint le service Tape Engine.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2006-6076",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-6076"
    },
    {
      "name": "CVE-2007-0816",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0816"
    },
    {
      "name": "CVE-2007-1447",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1447"
    },
    {
      "name": "CVE-2007-1448",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1448"
    }
  ],
  "links": [],
  "reference": "CERTA-2007-AVI-133",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-03-16T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Quatre vuln\u00e9rabilit\u00e9s dans BrightStor ARCserve peuvent \u00eatre exploit\u00e9es\npar une personne malintentionn\u00e9e distante afin d\u0027effectuer un d\u00e9ni de\nservice ou une ex\u00e9cution de code arbitraire.\n",
  "title": "Vuln\u00e9rabilit\u00e9s dans BrightStor ARCserve",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 de CA du 15 mars 2007",
      "url": "http://supportconnecttw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"
    }
  ]
}

CERTA-2007-AVI-133

Vulnerability from certfr_avis - Published: - Updated:

Quatre vulnérabilités dans BrightStor ARCserve peuvent être exploitées par une personne malintentionnée distante afin d'effectuer un déni de service ou une exécution de code arbitraire.

Description

Quatre vulnérabilités ont été identifiées dans BrightStor ARCserve :

un débordement de tampon possible dans le service Tape Engine qui permet l'exécution de code arbitraire ;
une corruption de mémoire dans le traitement de procédures RPC par le service Tape Engine qui cause un déni de service et potentiellement l'exécution de code arbitraire ;
un mauvais traitement de paramètres par le service catirpc.dll qui permet à un attaquant d'envoyer des requêtes malformées pour causer un déni de service ;
une fonction RPC, pouvant être appelée par une personne malintentionnée distante, qui éteint le service Tape Engine.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	N/A	CA Server Protection Suite r2 ;
Cisco	N/A	BrightStor Enterprise Backup r10.5 ;
Cisco	Small Business	CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2 ;
N/A	N/A	BrightStor ARCserve Backup r11.5 ;
Microsoft	Windows	BrightStor ARCserve Backup r11 for Windows ;
N/A	N/A	BrightStor ARCserve Backup r9.01 ;
Cisco	Small Business	CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2.
N/A	N/A	BrightStor ARCserve Backup r11.1 ;
Cisco	N/A	CA Business Protection Suite r2 ;

References

Title

Publication Time

Tags

Bulletin de sécurité de CA du 15 mars 2007

None

vendor-advisory

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "CA Server Protection Suite r2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "BrightStor Enterprise Backup r10.5 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2 ;",
      "product": {
        "name": "Small Business",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "BrightStor ARCserve Backup r11.5 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "BrightStor ARCserve Backup r11 for Windows ;",
      "product": {
        "name": "Windows",
        "vendor": {
          "name": "Microsoft",
          "scada": false
        }
      }
    },
    {
      "description": "BrightStor ARCserve Backup r9.01 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2.",
      "product": {
        "name": "Small Business",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "BrightStor ARCserve Backup r11.1 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "CA Business Protection Suite r2 ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nQuatre vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans BrightStor ARCserve :\n\n-   un d\u00e9bordement de tampon possible dans le service Tape Engine qui\n    permet l\u0027ex\u00e9cution de code arbitraire ;\n-   une corruption de m\u00e9moire dans le traitement de proc\u00e9dures RPC par\n    le service Tape Engine qui cause un d\u00e9ni de service et\n    potentiellement l\u0027ex\u00e9cution de code arbitraire ;\n-   un mauvais traitement de param\u00e8tres par le service catirpc.dll qui\n    permet \u00e0 un attaquant d\u0027envoyer des requ\u00eates malform\u00e9es pour causer\n    un d\u00e9ni de service ;\n-   une fonction RPC, pouvant \u00eatre appel\u00e9e par une personne\n    malintentionn\u00e9e distante, qui \u00e9teint le service Tape Engine.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2006-6076",
      "url": "https://www.cve.org/CVERecord?id=CVE-2006-6076"
    },
    {
      "name": "CVE-2007-0816",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-0816"
    },
    {
      "name": "CVE-2007-1447",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1447"
    },
    {
      "name": "CVE-2007-1448",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-1448"
    }
  ],
  "links": [],
  "reference": "CERTA-2007-AVI-133",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-03-16T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "Quatre vuln\u00e9rabilit\u00e9s dans BrightStor ARCserve peuvent \u00eatre exploit\u00e9es\npar une personne malintentionn\u00e9e distante afin d\u0027effectuer un d\u00e9ni de\nservice ou une ex\u00e9cution de code arbitraire.\n",
  "title": "Vuln\u00e9rabilit\u00e9s dans BrightStor ARCserve",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 de CA du 15 mars 2007",
      "url": "http://supportconnecttw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"
    }
  ]
}

GHSA-F4WF-C423-FR3W

Vulnerability from github – Published: 2022-05-01 07:34 – Updated: 2022-05-01 07:34

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2006-6076"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2006-11-24T17:07:00Z",
    "severity": "HIGH"
  },
  "details": "Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502.",
  "id": "GHSA-f4wf-c423-fr3w",
  "modified": "2022-05-01T07:34:37Z",
  "published": "2022-05-01T07:34:37Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2006-6076"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30453"
    },
    {
      "type": "WEB",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html"
    },
    {
      "type": "WEB",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/23060"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/24512"
    },
    {
      "type": "WEB",
      "url": "http://securitytracker.com/id?1017268"
    },
    {
      "type": "WEB",
      "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/437300"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/452222/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/452318/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/456711"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/21221"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2006/4654"
    },
    {
      "type": "WEB",
      "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"
    },
    {
      "type": "WEB",
      "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2006-6076 (GCVE-0-2006-6076)

FKIE_CVE-2006-6076

GSD-2006-6076

CERTA-2007-AVI-133

Description

Solution

CERTA-2007-AVI-133

Description

Solution

GHSA-F4WF-C423-FR3W

Tags

Sightings

Nomenclature