CVSS: 10.0EPSS: 24%CPEs: 15EXPL: 0CVE-2008-3175
https://notcve.org/view.php?id=CVE-2008-3175
01 Aug 2008 — Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted message that triggers a buffer overflow. Subdesbordamiento de enteros en la biblioteca rxRPC.dll en el servicio LGServer en el servidor en CA ARCserve Backup versiones 11.0 hasta 11.5 para ordenadores Portátiles y Escritorios, permite a los atacantes remotos ejecutar código arbitrario... • http://lists.grok.org.uk/pipermail/full-disclosure/2008-July/063594.html • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 82%CPEs: 9EXPL: 1CVE-2007-5003 – CA BrightStor ARCserve for Laptops & Desktops LGServer - Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-5003
01 Oct 2007 — Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function. Múltiples desbordamientos de búfer basado en pila en CA (Computer Associates) BrightStor ARCserve Backup para Portátil y Sobremesa r11.0 hasta r11.5 permiten a atacantes remotos ejecutar... • https://www.exploit-db.com/exploits/16411 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 9.8EPSS: 13%CPEs: 9EXPL: 0CVE-2007-5004
https://notcve.org/view.php?id=CVE-2007-5004
01 Oct 2007 — Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to execute arbitrary code via a long username and a certain "useless" password. Desbordamiento de entero en en pila en CA (Computer Associates) BrightStor ARCserve Backup para Portátil y Sobremesa r11.0 hasta r11.5 permite a atacantes remotos ejecutar código de su elección mediante un nombre de usuario largo y determinadas contraseñas "sin uso". • http://research.eeye.com/html/advisories/published/AD20070920.html • CWE-189: Numeric Errors •
CVSS: 10.0EPSS: 3%CPEs: 9EXPL: 0CVE-2007-5005
https://notcve.org/view.php?id=CVE-2007-5005
01 Oct 2007 — Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to upload and overwrite arbitrary files via a ..\ (dot dot backslash) sequence in the destination filename argument to sub-function 8 in the rxrReceiveFileFromServer command. Vulnerabilidad de salto de directorio en rxRPC.dll de CA (Computer Associates) BrightStor ARCserve Backup para Portátil y Sobremesa r11.0 hasta r11.5 permite a atacan... • http://research.eeye.com/html/advisories/published/AD20070920.html • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 0CVE-2007-5006
https://notcve.org/view.php?id=CVE-2007-5006
01 Oct 2007 — Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 do not verify if a peer is authenticated, which allows remote attackers to add and delete users, and start client restores. Múltiples gestores de comandos de CA (Computer Associates) BrightStor ARCserve Backup para Portátil y Sobremesa r11.0 hasta r11.5 no verifican si un par está autenticado, lo cual permite a atacantes remotos añadir y borrar usuarios, e inicializar recuperaciones ... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=598 • CWE-287: Improper Authentication •
CVSS: 10.0EPSS: 60%CPEs: 1EXPL: 3CVE-2007-3216 – CA BrightStor ARCserve for Laptops & Desktops LGServer - 'rxsSetDataGrowthScheduleAndFilter' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-3216
14 Jun 2007 — Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via crafted arguments to the (1) rxsAddNewUser, (2) rxsSetUserInfo, (3) rxsRenameUser, (4) rxsSetMessageLogSettings, (5) rxsExportData, (6) rxsSetServerOptions, (7) rxsRenameFile, (8) rxsACIManageSend, (9) rxsExportUser, (10) rxsImportUser, (11) rxsMoveUserData, (12) rxsUseLicenseIni, (13) rxsLicGetSiteId, (14) rxsGetLogFil... • https://www.exploit-db.com/exploits/16415 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.8EPSS: 0%CPEs: 9EXPL: 0CVE-2007-0672
https://notcve.org/view.php?id=CVE-2007-0672
03 Feb 2007 — LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\Server\data\transfer\. LGSERVER.EXE de BrightStor Mobile Backup 4.0 permite a atacantes remotos provocar una denegación de servicio (agotamiento de disco y colapso de demonio) mediante un valor 0xFFFFFF7F en un punto concreto ... • http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp •
CVSS: 7.8EPSS: 1%CPEs: 9EXPL: 0CVE-2007-0673
https://notcve.org/view.php?id=CVE-2007-0673
03 Feb 2007 — LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read. El archivo LGSERVER.EXE en BrightStor ARCserve Backup para Ordenadores Portátiles y de Escritorio versión r11.1 permite a los atacantes remotos causar una denegación de servicio (bloqueo del demonio) por medio de un valor de 0xFFFFFFFF en un dete... • http://osvdb.org/32948 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 81%CPEs: 8EXPL: 4CVE-2007-0449 – CA BrightStor ARCserve - 'lgserver.exe' Remote Stack Overflow
https://notcve.org/view.php?id=CVE-2007-0449
23 Jan 2007 — Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200. Múltiples desbordamientos de búfer en el archivo LGSERVER.EXE en CA BrightStor ARCserve Backup para Ordenadores Portátiles y de Escritorio versión r11.0 hasta versión r11.... • https://www.exploit-db.com/exploits/3244 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 7.5EPSS: 12%CPEs: 16EXPL: 2CVE-2006-0306 – Computer Associates Unicenter 6.0 - Remote Control DM Primer Remote Denial of Service
https://notcve.org/view.php?id=CVE-2006-0306
19 Jan 2006 — The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not han... • https://www.exploit-db.com/exploits/27101 • CWE-399: Resource Management Errors •