CVE-2006-6379

Severity

75%

Complexity

99%

Confidentiality

106%

Buffer overflow in the BrightStor Backup Discovery Service in multiple CA products, including ARCserve Backup r11.5 SP1 and earlier, ARCserve Backup 9.01 up to 11.1, Enterprise Backup 10.5, and CA Server Protection Suite r2, allows remote attackers to execute arbitrary code via unspecified vectors.

Buffer overflow in the BrightStor Backup Discovery Service in multiple CA products, including ARCserve Backup r11.5 SP1 and earlier, ARCserve Backup 9.01 up to 11.1, Enterprise Backup 10.5, and CA Server Protection Suite r2, allows remote attackers to execute arbitrary code via unspecified vectors.

CVSS 2.0 Base Score 7.5. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:P/I:P/A:P).

Overview

Type

Computer Associates

First reported 18 years ago

2006-12-10 19:28:00

Last updated 6 years ago

2018-10-17 21:47:00

Affected Software

Computer Associates BrightStor ARCserve Backup 9.01

9.01

Computer Associates BrightStor ARCserve Backup 11

11

Computer Associates BrightStor ARCserve Backup 11.1

11.1

Computer Associates BrightStor ARCserve Backup 11.5

11.5

Computer Associates BrightStor ARCServe Backup 11.5 SP1

11.5

Computer Associates BrightStor Enterprise Backup 10.5

10.5

Computer Associates Server Protection Suite r2

2

References

2010

1017356

http://supportconnectw.ca.com/public/storage/infodocs/babsecurity-notice.asp

Vendor Advisory

30775

20061208 [CAID 34846]: CA BrightStor ARCserve Backup Discovery Service Buffer Overflow Vulnerability

21502

Vendor Advisory

ADV-2006-4910

brightstor-arcserv-discovery-bo(30791)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.