Etrust Security Command Center Security Vulnerabilities and Issues — Etrust Security Command Center CVE List

BroadcomEtrust Security Command Center

3 matches found

CVE•added 2006/09/22 10:0 p.m.•41 views

CVE-2006-4900

CVE-2006-4900 affects Computer Associates eTrust Security Command Center (SCC) 1.0 and r8 up to SP1 CR2. The vulnerability is a directory traversal in the eSCCAdHocHtmlFile parameter to eSMPAuditServlet caused by improper handling in getadhochtml, allowing remote authenticated users to read and d...

5.5CVSS6.4AI score0.07863EPSS

CVE•added 2006/09/22 10:0 p.m.•40 views

CVE-2006-4901

CVE-2006-4901 affects CA eTrust Security Command Center (SCC) 1.0 and r8 up to SP1 CR2 and eTrust Audit 1.5 and r8. The vulnerability allows remote attackers to spoof alerts and perform replay attacks by invoking eTSAPISend.exe with crafted arguments. Affected products include SCC 1.0, SCC r8, SC...

6.4CVSS6.8AI score0.1033EPSS

CVE•added 2006/09/22 10:0 p.m.•38 views

CVE-2006-4899

CVE-2006-4899 affects CA eTrust Security Command Center (SCC) 1.0 and r8 up to SP1 CR2 on Windows. The ePPIServlet script’s PIProfile function leaks the web server path via a single quote in an error message, enabling remote attackers to discover the server path. This vulnerability’s impact is th...

5CVSS6.6AI score0.09883EPSS