Vulnerability Database

308,379

Total vulnerabilities in the database

CVE-2006-2154

EMC Retrospect for Windows 6.5 before 6.5.382, 7.0 before 7.0.344, and 7.5 before 7.5.1.105 does not drop privileges before opening files, which allows local users to execute arbitrary code via the File>Open dialog.

Published: May 3, 2006
Updated: Nov 9, 2025
CVE: CVE-2006-2154
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.2
AV:L/AC:L/Au:N/C:C/I:C/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
emc / retrospect	-	7.0.x
emc / retrospect	-	6.5.x
emc / retrospect	-	7.5.x

http://kb.dantz.com/display/2n/articleDirect/index.asp?aid=9507&r=0.7344324
http://secunia.com/advisories/19850
http://www.securityfocus.com/bid/17798
http://www.vupen.com/english/advisories/2006/1612
https://exchange.xforce.ibmcloud.com/vulnerabilities/26226

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo