Vulnerability Details : CVE-2006-6379
Buffer overflow in the BrightStor Backup Discovery Service in multiple CA products, including ARCserve Backup r11.5 SP1 and earlier, ARCserve Backup 9.01 up to 11.1, Enterprise Backup 10.5, and CA Server Protection Suite r2, allows remote attackers to execute arbitrary code via unspecified vectors.
Vulnerability category: OverflowExecute code
Exploit prediction scoring system (EPSS) score for CVE-2006-6379
Probability of exploitation activity in the next 30 days: 91.22%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 98 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2006-6379
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|
|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
[email protected] |
References for CVE-2006-6379
-
http://www.securityfocus.com/bid/21502
Vendor Advisory
-
http://www.vupen.com/english/advisories/2006/4910
-
http://securitytracker.com/id?1017356
-
http://supportconnectw.ca.com/public/storage/infodocs/babsecurity-notice.asp
Vendor Advisory
-
http://www.securityfocus.com/archive/1/453916/100/0/threaded
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/30791
-
http://securityreason.com/securityalert/2010
Products affected by CVE-2006-6379
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:9.01:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup:11:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_enterprise_backup:10.5:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:server_protection_suite:2:*:*:*:*:*:*:*