CVE-2006-3569

Name of the Vulnerable Software and Affected Versions NetApp Data ONTAP versions 7.0x through 7.0.4P8D9 NetApp Data ONTAP versions 7.1x NetApp Data ONTAP versions 7.1.0.1x NetApp Data ONTAP versions 7.2RC1 NetApp Data ONTAP versions 7.2RC2 NetApp Data ONTAP versions 7.2RC3

Description The issue allows unauthorized users to gain access to privileged commands via unknown vectors, likely related to incorrect capabilities with the audit role.

Recommendations For NetApp Data ONTAP versions 7.0x through 7.0.4P8D9, consider restricting access to privileged commands until a fix is available. For NetApp Data ONTAP versions 7.1x, restrict the use of the audit role to minimize the risk of exploitation. For NetApp Data ONTAP versions 7.1.0.1x, limit access to sensitive areas of the system to prevent unauthorized access. For NetApp Data ONTAP versions 7.2RC1, 7.2RC2, and 7.2RC3, avoid using the affected capabilities with the audit role until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.