CVE-2006-2154

Published: May 3, 2006Modified: Apr 16, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

EMC Retrospect for Windows 6.5 before 6.5.382, 7.0 before 7.0.344, and 7.5 before 7.5.1.105 does not drop privileges before opening files, which allows local users to execute arbitrary code via the File>Open dialog.

Affected (3)

Products: Emc: Retrospect

Emc

1 product

Retrospect

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Emc Retrospect	Up to 6.5
Emc Retrospect	Up to 7.0
Emc Retrospect	Up to 7.5

References (10)

http://kb.dantz.com/display/2n/articleDirect/index.asp?aid=9507&r=0.7344324

Source: cve@mitre.org

http://secunia.com/advisories/19850

Source: cve@mitre.org

Vendor Advisory

http://www.securityfocus.com/bid/17798

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2006/1612

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/26226

Source: cve@mitre.org

http://kb.dantz.com/display/2n/articleDirect/index.asp?aid=9507&r=0.7344324