CVE-2006-6379

CA Products <11.5 SP1 - Buffer Overflow

Title source: llm

Description

Buffer overflow in the BrightStor Backup Discovery Service in multiple CA products, including ARCserve Backup r11.5 SP1 and earlier, ARCserve Backup 9.01 up to 11.1, Enterprise Backup 10.5, and CA Server Protection Suite r2, allows remote attackers to execute arbitrary code via unspecified vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by cybertronic · cremotewindows

https://www.exploit-db.com/exploits/1132

View Code ZIP pw:eip

References (8)

[Third Party Advisory] http://www.vupen.com/english/advisories/2006/4910

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/453916/100/0/threaded

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/30791

[Third Party Advisory, VDB Entry] http://securitytracker.com/id?1017356

[Third Party Advisory] http://securityreason.com/securityalert/2010

[Third Party Advisory, VDB Entry] http://www.osvdb.org/30775

[Vendor Advisory] http://www.securityfocus.com/bid/21502

[Vendor Advisory] http://supportconnectw.ca.com/public/storage/infodocs/babsecurity-notice.asp

Scores

EPSS 0.2906

EPSS Percentile 96.6%

Details

Status published

Products (6)

broadcom/brightstor_arcserve_backup 9.01

broadcom/brightstor_arcserve_backup 11

broadcom/brightstor_arcserve_backup 11.1

broadcom/brightstor_arcserve_backup 11.5 (2 CPE variants)

broadcom/brightstor_enterprise_backup 10.5

broadcom/server_protection_suite 2

Published Dec 10, 2006

Tracked Since Feb 18, 2026