6.4

CVE-2006-4901

Exploit
Computer Associates (CA) eTrust Security Command Center 1.0 and r8 up to SP1 CR2, and eTrust Audit 1.5 and r8, allows remote attackers to spoof alerts and conduct replay attacks by invoking eTSAPISend.exe with the desired arguments.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
BroadcomEtrust Audit Client Version1.5 Updatesp2
BroadcomEtrust Audit Client Version1.5 Updatesp3
BroadcomEtrust Audit Client Version8.0
BroadcomEtrust Audit Datatools Version1.5 Updatesp2
BroadcomEtrust Audit Datatools Version1.5 Updatesp3
BroadcomEtrust Audit Policy Manager Version1.5 Updatesp2
BroadcomEtrust Audit Policy Manager Version1.5 Updatesp3
BroadcomEtrust Security Command Center Version8 Updatesp1 Editioncr1
BroadcomEtrust Security Command Center Version8 Updatesp1 Editioncr2
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 10.33% 0.951
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.4 10 4.9
AV:N/AC:L/Au:N/C:N/I:P/A:P
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://secunia.com/advisories/22023
Patch
Vendor Advisory
Exploit
http://securitytracker.com/id?1016910
Patch
http://users.tpg.com.au/adsl2dvp/advisories/200608-computerassociates.txt
Patch
Vendor Advisory
Exploit
http://www.securityfocus.com/archive/1/446611/100/0/threaded
http://www.securityfocus.com/archive/1/446716/100/0/threaded
http://www.securityfocus.com/bid/20139
Exploit
http://www.vupen.com/english/advisories/2006/3738
http://www3.ca.com/securityadvisor/blogs/posting.aspx?id=90744&pid=93243&date=2006/9
Patch
Vendor Advisory
Exploit
http://secunia.com/advisories/22073
Vendor Advisory
http://securitytracker.com/id?1016909
http://www.osvdb.org/29011
Patch
Exploit
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34618
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/29107