CVE-2006-6917
Broadcom Brightstor Arcserve Backup Server - Buffer Overflow
Title source: ruleDescription
Multiple buffer overflows in Computer Associates (CA) BrightStor ARCserve Backup R11.5 Server before SP2 allows remote attackers to execute arbitrary code in the Tape Engine (tapeeng.exe) via a crafted RPC request with (1) opnum 38, which is not properly handled in TAPEUTIL.dll 11.5.3884.0, or (2) opnum 37, which is not properly handled in TAPEENG.dll 11.5.3884.0.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Winny Thomas · pythonremotewindows
https://www.exploit-db.com/exploits/3086
References (12)
Core 12
Core References
Various Sources x_refsource_confirm
http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97428
Various Sources x_refsource_confirm
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34959
Various Sources x_refsource_misc
http://supportconnectw.ca.com/public/storage/infodocs/basbrtapeeng-secnotice.asp
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/454088/30/0/threaded
Various Sources x_refsource_misc
http://www.lssec.com/advisories/LS-20061001.pdf
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/456711
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/454094/30/360/threaded
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/456428/100/0/threaded
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/453930/30/390/threaded
Exploit, Third Party Advisory exploit
x_refsource_exploit-db
https://www.exploit-db.com/exploits/3086
Various Sources x_refsource_misc
http://www.lssec.com/advisories/LS-20060908.pdf
Third Party Advisory, VDB Entry mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/453933/30/420/threaded
Scores
EPSS
0.5124
EPSS Percentile
97.9%
Details
Status
published
Products (1)
broadcom/brightstor_arcserve_backup_server
11.5
Published
Dec 31, 2006
Tracked Since
Feb 18, 2026