
CVE-2007-0168 – CA BrightStor ARCserve Backup Tape Engine Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2007-0168
11 Jan 2007 — The Tape Engine service in Computer Associates (CA) BrightStor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Server/Business Protection Suite r2 allows remote attackers to execute arbitrary code via certain data in opnum 0xBF in an RPC request, which is directly executed. El servicio Tape Engine en Computer Associates (CA) BrightStor ARCserve Backup 9.01 hasta 11.5, Enterprise Backup 10.5, y CA Server/Business Protection Suite r2 permite a atacantes remotos ejecutar código de su elección... • https://www.exploit-db.com/exploits/29444 •

CVE-2007-0169 – CA BrightStor ARCserve Backup Tape Engine Buffer Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2007-0169
11 Jan 2007 — Multiple buffer overflows in Computer Associates (CA) BrightStor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Server/Business Protection Suite r2 allow remote attackers to execute arbitrary code via RPC requests with crafted data for opnums (1) 0x2F and (2) 0x75 in the (a) Message Engine RPC service, or opnum (3) 0xCF in the Tape Engine service. Unos desbordamientos de búfer múltiples en Computer Associates (CA) BrightStor ARCserve Backup versión 9.01 hasta versión 11.5, Enterprise Back... • https://www.exploit-db.com/exploits/16418 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2006-6379 – CA BrightStor ARCserve Backup - Remote Overflow
https://notcve.org/view.php?id=CVE-2006-6379
10 Dec 2006 — Buffer overflow in the BrightStor Backup Discovery Service in multiple CA products, including ARCserve Backup r11.5 SP1 and earlier, ARCserve Backup 9.01 up to 11.1, Enterprise Backup 10.5, and CA Server Protection Suite r2, allows remote attackers to execute arbitrary code via unspecified vectors. Desbordamiento de búfer en BrightStor Backup Discovery Service en múltiples productos CA, incluidos ARCserve Backup r11.5 SP1 y anteriores, ARCserve Backup 9.01 hasta la 11.1, Enterprise Backup 10.5 , y CA Server... • https://www.exploit-db.com/exploits/1132 •

CVE-2006-6076 – CA BrightStor ARCserve - Tape Engine Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-6076
24 Nov 2006 — Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502. Desbordamiento de búfer en Tape Engine (tapeeng.exe) en Computer Associates BrightStor ARCserve Backup 11.5 permite a un atacante remoto ejecutar código de su elección a través de ciertas RPC al puerto TCP 6502. • https://www.exploit-db.com/exploits/16407 •

CVE-2006-5143 – CA Multiple Product Message Engine RPC Server Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2006-5143
05 Oct 2006 — Multiple buffer overflows in CA BrightStor ARCserve Backup r11.5 SP1 and earlier, r11.1, and 9.01; BrightStor ARCserve Backup for Windows r11; BrightStor Enterprise Backup 10.5; Server Protection Suite r2; and Business Protection Suite r2 allow remote attackers to execute arbitrary code via crafted data on TCP port 6071 to the Backup Agent RPC Server (DBASVR.exe) using the RPC routines with opcode (1) 0x01, (2) 0x02, or (3) 0x18; invalid stub data on TCP port 6503 to the RPC routines with opcode (4) 0x2b or... • https://www.exploit-db.com/exploits/3495 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2006-0307
https://notcve.org/view.php?id=CVE-2006-0307
19 Jan 2006 — The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption and log file consumption) via unspecified "unrecognized network messages" that are not properly handled. • http://secunia.com/advisories/18531 • CWE-399: Resource Management Errors •

CVE-2006-0306 – Computer Associates Unicenter 6.0 - Remote Control DM Primer Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-0306
19 Jan 2006 — The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not han... • https://www.exploit-db.com/exploits/27101 • CWE-399: Resource Management Errors •

CVE-2005-3653
https://notcve.org/view.php?id=CVE-2005-3653
31 Dec 2005 — Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field. • http://marc.info/?l=full-disclosure&m=113803349715927&w=2 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVE-2005-2535 – CA BrightStor ARCserve Backup - Remote Buffer Overflow (PoC)
https://notcve.org/view.php?id=CVE-2005-2535
10 Aug 2005 — Buffer overflow in the Discovery Service in BrightStor ARCserve Backup 9.0 through 11.1 allows remote attackers to execute arbitrary commands via a large packet to TCP port 41523, a different vulnerability than CVE-2005-0260. • https://www.exploit-db.com/exploits/815 •

CVE-2005-1272 – CA BrightStor Agent for Microsoft SQL - Remote Overflow
https://notcve.org/view.php?id=CVE-2005-1272
05 Aug 2005 — Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port (1) 6070 or (2) 6050. Desbordamiento de búfer en Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 permite que atacantes remotos ejecuten código arbitrario mediante el envío de una cadena larga al puerto 6070 ó 6050. • https://www.exploit-db.com/exploits/16403 •