CVE-2006-6076

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2006-6076
Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502.

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html
http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html
http://secunia.com/advisories/23060 Vendor Advisory
http://secunia.com/advisories/24512
http://securitytracker.com/id?1017268
http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp
http://www.kb.cert.org/vuls/id/437300 US Government Resource
http://www.securityfocus.com/archive/1/452222/100/0/threaded
http://www.securityfocus.com/archive/1/452318/100/0/threaded
http://www.securityfocus.com/archive/1/456711
http://www.securityfocus.com/bid/21221
http://www.vupen.com/english/advisories/2006/4654
http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817
https://exchange.xforce.ibmcloud.com/vulnerabilities/30453
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*
cpe:2.3:a:ca:brightstor_arcserve_backup:11:*:windows:*:*:*:*:*
cpe:2.3:a:ca:brightstor_arcserve_backup:11.1:*:windows:*:*:*:*:*
cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.0:*:sql:*:*:*:*:*
cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.1:*:sql:*:*:*:*:*
History

07 Apr 2021, 18:14

Type Values Removed Values Added
CPE cpe:2.3:a:ca:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
cpe:2.3:a:ca:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*
cpe:2.3:a:ca:brightstor_arcserve_backup:*:*:*:*:*:*:*:*		 cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*
Information

Published : 2006-11-24 17:07

Updated : 2023-12-10 10:40

NVD link : CVE-2006-6076

Mitre link : CVE-2006-6076

CVE.ORG link : CVE-2006-6076

JSON object : View

Products Affected

ca

  • brightstor_arcserve_backup_agent
  • brightstor_arcserve_backup

broadcom

  • brightstor_arcserve_backup
CWE
NVD-CWE-Other