CVE-2006-6076
7.6 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.298 Low
EPSS
Percentile
96.9%
Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502.
References
lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html
lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html
secunia.com/advisories/23060
secunia.com/advisories/24512
securitytracker.com/id?1017268
supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp
www.kb.cert.org/vuls/id/437300
www.securityfocus.com/archive/1/452222/100/0/threaded
www.securityfocus.com/archive/1/452318/100/0/threaded
www.securityfocus.com/archive/1/456711
www.securityfocus.com/bid/21221
www.vupen.com/english/advisories/2006/4654
www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317
www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817
exchange.xforce.ibmcloud.com/vulnerabilities/30453
Related
7.6 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.298 Low
EPSS
Percentile
96.9%