CVE-2006-6379

CA Products <11.5 SP1 - Buffer Overflow

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2006-6379. PoCs published by cybertronic.

AI-analyzed exploit summary This exploit targets a buffer overflow vulnerability in Computer Associates BrightStor ARCserve Backup Agent for SQL (dbasqlr.exe) and Discovery Service (dsconfig.exe). It includes both a vulnerability scanner and exploit functionality with bind/reverse shell payloads.

Description

Buffer overflow in the BrightStor Backup Discovery Service in multiple CA products, including ARCserve Backup r11.5 SP1 and earlier, ARCserve Backup 9.01 up to 11.1, Enterprise Backup 10.5, and CA Server Protection Suite r2, allows remote attackers to execute arbitrary code via unspecified vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED
by cybertronic · cremotewindows
https://www.exploit-db.com/exploits/1132

This exploit targets a buffer overflow vulnerability in Computer Associates BrightStor ARCserve Backup Agent for SQL (dbasqlr.exe) and Discovery Service (dsconfig.exe). It includes both a vulnerability scanner and exploit functionality with bind/reverse shell payloads.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Computer Associates BrightStor ARCserve Backup Agent for SQL (dbasqlr.exe) and Discovery Service (dsconfig.exe)
No auth needed
Prerequisites: Network access to vulnerable service · Target service running on default or known ports (6070 or 41523)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (8)

Core 8
Core References
Third Party Advisory vdb-entry x_refsource_vupen
http://www.vupen.com/english/advisories/2006/4910
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/453916/100/0/threaded
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/30791
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1017356
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/2010
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/30775
Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/21502

Scores

EPSS 0.2080
EPSS Percentile 97.2%

Details

Status published
Products (6)
broadcom/brightstor_arcserve_backup 9.01
broadcom/brightstor_arcserve_backup 11
broadcom/brightstor_arcserve_backup 11.1
broadcom/brightstor_arcserve_backup 11.5 (2 CPE variants)
broadcom/brightstor_enterprise_backup 10.5
broadcom/server_protection_suite 2
Published Dec 10, 2006
Tracked Since Feb 18, 2026