Vulnerability Details : CVE-2006-6379
Buffer overflow in the BrightStor Backup Discovery Service in multiple CA products, including ARCserve Backup r11.5 SP1 and earlier, ARCserve Backup 9.01 up to 11.1, Enterprise Backup 10.5, and CA Server Protection Suite r2, allows remote attackers to execute arbitrary code via unspecified vectors.
Vulnerability category: OverflowExecute code
Products affected by CVE-2006-6379
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:9.01:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:11:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_enterprise_backup:10.5:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:server_protection_suite:2:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-6379
28.30%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 96 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-6379
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2006-6379
-
http://www.securityfocus.com/bid/21502
Vendor Advisory
-
http://www.osvdb.org/30775
-
http://www.vupen.com/english/advisories/2006/4910
-
http://securitytracker.com/id?1017356
-
http://supportconnectw.ca.com/public/storage/infodocs/babsecurity-notice.asp
Vendor Advisory
-
http://www.securityfocus.com/archive/1/453916/100/0/threaded
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/30791
-
http://securityreason.com/securityalert/2010
Jump to