Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2006-4901
HistorySep 22, 2006 - 10:07 p.m.

CVE-2006-4901

2006-09-2222:07:00
mitre
web.nvd.nist.gov
22
2
computer associates
ca
etrust security command center
cve-2006-4901
etsapisend.exe
spoofing
replay attacks
nvd

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.024

Percentile

90.0%

JSON

Computer Associates (CA) eTrust Security Command Center 1.0 and r8 up to SP1 CR2, and eTrust Audit 1.5 and r8, allows remote attackers to spoof alerts and conduct replay attacks by invoking eTSAPISend.exe with the desired arguments.

Affected configurations

Nvd
Node
broadcometrust_audit_clientMatch1.5sp2
OR
broadcometrust_audit_clientMatch1.5sp3
OR
broadcometrust_audit_clientMatch8.0
OR
broadcometrust_audit_datatoolsMatch1.5sp2
OR
broadcometrust_audit_datatoolsMatch1.5sp3
OR
broadcometrust_audit_datatoolsMatch8.0
OR
broadcometrust_audit_policy_managerMatch1.5sp2
OR
broadcometrust_audit_policy_managerMatch1.5sp3
OR
broadcometrust_audit_policy_managerMatch8.0
OR
broadcometrust_security_command_centerMatch1.0
OR
broadcometrust_security_command_centerMatch8
OR
broadcometrust_security_command_centerMatch8sp1cr1
OR
broadcometrust_security_command_centerMatch8sp1cr2
VendorProductVersionCPE
broadcometrust_audit_client1.5cpe:2.3:a:broadcom:etrust_audit_client:1.5:sp2:*:*:*:*:*:*
broadcometrust_audit_client1.5cpe:2.3:a:broadcom:etrust_audit_client:1.5:sp3:*:*:*:*:*:*
broadcometrust_audit_client8.0cpe:2.3:a:broadcom:etrust_audit_client:8.0:*:*:*:*:*:*:*
broadcometrust_audit_datatools1.5cpe:2.3:a:broadcom:etrust_audit_datatools:1.5:sp2:*:*:*:*:*:*
broadcometrust_audit_datatools1.5cpe:2.3:a:broadcom:etrust_audit_datatools:1.5:sp3:*:*:*:*:*:*
broadcometrust_audit_datatools8.0cpe:2.3:a:broadcom:etrust_audit_datatools:8.0:*:*:*:*:*:*:*
broadcometrust_audit_policy_manager1.5cpe:2.3:a:broadcom:etrust_audit_policy_manager:1.5:sp2:*:*:*:*:*:*
broadcometrust_audit_policy_manager1.5cpe:2.3:a:broadcom:etrust_audit_policy_manager:1.5:sp3:*:*:*:*:*:*
broadcometrust_audit_policy_manager8.0cpe:2.3:a:broadcom:etrust_audit_policy_manager:8.0:*:*:*:*:*:*:*
broadcometrust_security_command_center1.0cpe:2.3:a:broadcom:etrust_security_command_center:1.0:*:*:*:*:*:*:*
Rows per page:
1-10 of 131

Social References

More

Related

cvelist 1
nvd 1
exploitdb 1
securityvulns 1
cvelist
cvelist
CVE-2006-4901
2006-09-22 22:00:00
nvd
nvd
CVE-2006-4901
2006-09-22 22:07:00
exploitdb
exploitdb
CA eSCC r8/1.0 / eTrust Audit r8/1.5 - Audit Event System Replay Attack
2006-09-21 00:00:00
securityvulns
securityvulns
[CAID 34616, 34617, 34618]: CA eSCC and eTrust Audit vulnerabilities
2006-09-22 00:00:00

CVSS2

6.4

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:P/A:P

AI Score

6.8

Confidence

Low

EPSS

0.024

Percentile

90.0%

JSON
Related for CVE-2006-4901
cvelist1nvd1exploitdb1securityvulns1