Vulnerability Details : CVE-2006-6917
Multiple buffer overflows in Computer Associates (CA) BrightStor ARCserve Backup R11.5 Server before SP2 allows remote attackers to execute arbitrary code in the Tape Engine (tapeeng.exe) via a crafted RPC request with (1) opnum 38, which is not properly handled in TAPEUTIL.dll 11.5.3884.0, or (2) opnum 37, which is not properly handled in TAPEENG.dll 11.5.3884.0.
Vulnerability category: Execute code
Products affected by CVE-2006-6917
- cpe:2.3:a:broadcom:brightstor_arcserve_backup_server:11.5:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-6917
90.99%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-6917
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
NIST |
References for CVE-2006-6917
-
http://www.securityfocus.com/archive/1/456428/100/0/threaded
-
http://www.securityfocus.com/archive/1/454094/30/360/threaded
-
https://www.exploit-db.com/exploits/3086
CA BrightStor ARCserve - 'tapeeng.exe' Remote Buffer Overflow - Windows remote Exploit
-
http://www.securityfocus.com/archive/1/454088/30/0/threaded
-
http://www.securityfocus.com/archive/1/453933/30/420/threaded
-
http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97428
-
http://supportconnectw.ca.com/public/storage/infodocs/basbrtapeeng-secnotice.asp
-
http://www.lssec.com/advisories/LS-20061001.pdf
-
http://www.lssec.com/advisories/LS-20060908.pdf
-
http://www.securityfocus.com/archive/1/456711
-
http://www.securityfocus.com/archive/1/453930/30/390/threaded
-
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34959
Jump to