CVSS: 10.0EPSS: 54%CPEs: 13EXPL: 0CVE-2007-2863 – CA Multiple Product AV Engine CAB Filename Parsing Stack Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2007-2863
05 Jun 2007 — Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a long filename in a .CAB file. Desbordamiento de búfer basado en pila en el motor Anti-Virus antes de contener la actualización 30.6 en múltiples productos CA (antiguamente Computer Associates) permite a atacantes remotos ejecutar código de su elección mediante un nombre de fichero largo en el fichero .CAB. This vulnerab... • http://secunia.com/advisories/25570 •
CVSS: 9.8EPSS: 81%CPEs: 33EXPL: 1CVE-2007-2864 – CA Multiple Product AV Engine CAB Header Parsing Stack Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2007-2864
05 Jun 2007 — Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a large invalid value of the coffFiles field in a .CAB file. Desbordamiento de búfer basado en pila en el motor antivirus anterior a la actualización de contenido 30.6 de múltiples productos CA (antiguamente Computer Associates) permite a atacantes remotos ejecutar código de su elección mediante un valor largo no válido d... • https://www.exploit-db.com/exploits/16677 •
CVSS: 10.0EPSS: 83%CPEs: 8EXPL: 1CVE-2007-2139 – CA BrightStor ArcServe Media Server Multiple Buffer Overflow Vulnerabilities
https://notcve.org/view.php?id=CVE-2007-2139
24 Apr 2007 — Multiple stack-based buffer overflows in the SUN RPC service in CA (formerly Computer Associates) BrightStor ARCserve Media Server, as used in BrightStor ARCserve Backup 9.01 through 11.5 SP2, BrightStor Enterprise Backup 10.5, Server Protection Suite 2, and Business Protection Suite 2, allow remote attackers to execute arbitrary code via malformed RPC strings, a different vulnerability than CVE-2006-5171, CVE-2006-5172, and CVE-2007-1785. Múltiple desbordamiento de búfer basado en pila en el servicio SUN R... • https://www.exploit-db.com/exploits/16413 •
CVSS: 9.8EPSS: 53%CPEs: 6EXPL: 1CVE-2007-1785 – CA BrightStor Backup 11.5.2.0 - 'Mediasvr.exe' Remote Code
https://notcve.org/view.php?id=CVE-2007-1785
31 Mar 2007 — The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdr_handle_t data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 (0xbf) RPC request. El servicio RPC en mediasvr.exe en CA BrightStor ARCserve Backup 11.5 SP2 construcción 4237 permite a atacantes remotos ejecutar código de su elección a través de datos xdr_handle_t manipulados en paquetes RPC, el cual e... • https://www.exploit-db.com/exploits/3604 •
CVSS: 10.0EPSS: 40%CPEs: 1EXPL: 0CVE-2007-1447
https://notcve.org/view.php?id=CVE-2007-1447
16 Mar 2007 — The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC procedure arguments, which result in memory corruption, a different vulnerability than CVE-2006-6076. El motor de cinta en CA (formalmente Computer Associates) BrightStor ARCserve Backup 11.5 y anteriores permite a atacantes remotos provocar denegación de servicio y posiblemente ejecutar código de su elección... • http://secunia.com/advisories/24512 •
CVSS: 7.5EPSS: 1%CPEs: 1EXPL: 0CVE-2007-1448
https://notcve.org/view.php?id=CVE-2007-1448
16 Mar 2007 — The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service (disabled interface) by calling an unspecified RPC function. El motor Tape en CA (formalmente Computer Associates) BrightStor ARCserve Backup 11.5 y anteriores permite a atacantes remotos provocar una denegación de servicio (deshabilitado del interfaz) llamando a una función RPC no especificada. • http://secunia.com/advisories/24512 •
CVSS: 6.2EPSS: 13%CPEs: 5EXPL: 1CVE-2007-0816 – CA BrightStor ARCserve 11.5.2.0 - 'catirpc.dll' RPC Server Denial of Service
https://notcve.org/view.php?id=CVE-2007-0816
07 Feb 2007 — The RPC Server service (catirpc.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 SP2 and earlier allows remote attackers to cause a denial of service (service crash) via a crafted TADDR2UADDR that triggers a null pointer dereference in catirpc.dll, possibly related to null credentials or verifier fields. El servicio RPC Server (catirpc.exe) en CA (anteriormente Computer Associates) BrightStor ARCserve Backup versión 11.5 SP2 y anteriores, permite a atacantes remotos causar una deneg... • https://www.exploit-db.com/exploits/3248 •
CVSS: 7.8EPSS: 1%CPEs: 9EXPL: 0CVE-2007-0672
https://notcve.org/view.php?id=CVE-2007-0672
03 Feb 2007 — LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\Server\data\transfer\. LGSERVER.EXE de BrightStor Mobile Backup 4.0 permite a atacantes remotos provocar una denegación de servicio (agotamiento de disco y colapso de demonio) mediante un valor 0xFFFFFF7F en un punto concreto ... • http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp •
CVSS: 7.8EPSS: 1%CPEs: 9EXPL: 0CVE-2007-0673
https://notcve.org/view.php?id=CVE-2007-0673
03 Feb 2007 — LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read. El archivo LGSERVER.EXE en BrightStor ARCserve Backup para Ordenadores Portátiles y de Escritorio versión r11.1 permite a los atacantes remotos causar una denegación de servicio (bloqueo del demonio) por medio de un valor de 0xFFFFFFFF en un dete... • http://osvdb.org/32948 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 81%CPEs: 8EXPL: 4CVE-2007-0449 – CA BrightStor ARCserve - 'lgserver.exe' Remote Stack Overflow
https://notcve.org/view.php?id=CVE-2007-0449
23 Jan 2007 — Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200. Múltiples desbordamientos de búfer en el archivo LGSERVER.EXE en CA BrightStor ARCserve Backup para Ordenadores Portátiles y de Escritorio versión r11.0 hasta versión r11.... • https://www.exploit-db.com/exploits/3244 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •