Published: 22/09/2006 Updated: 09/04/2021

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Subscribe to Etrust Security Command Center

The ePPIServlet script in Computer Associates (CA) eTrust Security Command Center 1.0 and r8 up to SP1 CR2, when running on Windows, allows remote malicious users to obtain the web server path via a "'" (single quote) in the PIProfile function, which leaks the path in an error message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
broadcom etrust security command center 8
broadcom etrust security command center 1.0

source: wwwsecurityfocuscom/bid/20139/info CA eTrust Security Command Center (eSCC) and eTrust Audit are prone to multiple vulnerabilities, including: - an information-disclosure issue - an arbitrary-file-deletion issue - a replay issue These vulnerabilities occur because the software fails to validate user input and because of design ...

NVD-CWE-Other http://users.tpg.com.au/adsl2dvp/advisories/200608-computerassociates.txt http://secunia.com/advisories/22023 http://www.securityfocus.com/bid/20139 http://securitytracker.com/id?1016910 http://www.vupen.com/english/advisories/2006/3738 http://www3.ca.com/securityadvisor/blogs/posting.aspx?id=90744&pid=93243&date=2006/9 http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34616 http://www.osvdb.org/29009 https://exchange.xforce.ibmcloud.com/vulnerabilities/29102 http://www.securityfocus.com/archive/1/446716/100/0/threaded http://www.securityfocus.com/archive/1/446611/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/28640/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-4899

Vulnerability Summary

Vulnerability Trend

Exploits

References

Vulmon Search

About

Products

Connect