CVE-2006-6076

Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html
http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html
http://secunia.com/advisories/23060	Vendor Advisory
http://secunia.com/advisories/24512
http://securitytracker.com/id?1017268
http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp
http://www.kb.cert.org/vuls/id/437300	US Government Resource
http://www.securityfocus.com/archive/1/452222/100/0/threaded
http://www.securityfocus.com/archive/1/452318/100/0/threaded
http://www.securityfocus.com/archive/1/456711
http://www.securityfocus.com/bid/21221
http://www.vupen.com/english/advisories/2006/4654
http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817
https://exchange.xforce.ibmcloud.com/vulnerabilities/30453

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:broadcom:brightstor_arcserve_backup::::::::
	cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:::::::*
	cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1::::::
	cpe:2.3:a:ca:brightstor_arcserve_backup:11::windows:::::
	cpe:2.3:a:ca:brightstor_arcserve_backup:11.1::windows:::::
	cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.0::sql:::::
	cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.1::sql:::::

History

No history.

Information

Published : 2006-11-24 17:07

Updated : 2021-04-07 18:14

NVD link : CVE-2006-6076

Mitre link : CVE-2006-6076

CVE.ORG link : CVE-2006-6076

JSON object : View

Products Affected

ca

brightstor_arcserve_backup
brightstor_arcserve_backup_agent

broadcom

brightstor_arcserve_backup

CWE

NVD-CWE-Other

{"id": "CVE-2006-6076", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": false, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": true, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-11-24T17:07:00.000", "references": [{"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html", "source": "cve@mitre.org"}, {"url": "http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/23060", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/24512", "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1017268", "source": "cve@mitre.org"}, {"url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp", "source": "cve@mitre.org"}, {"url": "http://www.kb.cert.org/vuls/id/437300", "tags": ["US Government Resource"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/452222/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/452318/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/456711", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/21221", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/4654", "source": "cve@mitre.org"}, {"url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317", "source": "cve@mitre.org"}, {"url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34817", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/30453", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502."}, {"lang": "es", "value": "Desbordamiento de b\u00fafer en Tape Engine (tapeeng.exe) en Computer Associates BrightStor ARCserve Backup 11.5 permite a un atacante remoto ejecutar c\u00f3digo de su elecci\u00f3n a trav\u00e9s de ciertas RPC al puerto TCP 6502."}], "lastModified": "2021-04-07T18:14:16.977", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0A72E07D-2997-46CF-847F-899CB60FC771", "versionEndIncluding": "11.5"}, {"criteria": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E37161BE-6AF5-40E0-BD63-2C17431D8B36"}, {"criteria": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4305BA3B-B302-48EA-A923-EEC762DA42ED"}, {"criteria": "cpe:2.3:a:ca:brightstor_arcserve_backup:11:*:windows:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6E236148-4A57-4FDC-A072-A77D3DD2DB53"}, {"criteria": "cpe:2.3:a:ca:brightstor_arcserve_backup:11.1:*:windows:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9E11A387-BF4A-4A54-8F29-37EFF14D72DD"}, {"criteria": "cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.0:*:sql:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E8D21407-0C60-4598-87D4-1386E4C20E0B"}, {"criteria": "cpe:2.3:a:ca:brightstor_arcserve_backup_agent:11.1:*:sql:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5C80D603-C650-465E-A9FD-34BA6E36335A"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org", "evaluatorSolution": "A denial-of-service condition may also result from exploit attempts."}