CVSS: 9.0EPSS: 74%CPEs: 8EXPL: 1CVE-2007-4620 – Computer Associates - Alert Notification Buffer Overflow
https://notcve.org/view.php?id=CVE-2007-4620
07 Apr 2008 — Multiple stack-based buffer overflows in Computer Associates (CA) Alert Notification Service (Alert.exe) 8.1.586.0, 8.0.450.0, and 7.1.758.0, as used in multiple CA products including Anti-Virus for the Enterprise 7.1 through r11.1 and Threat Manager for the Enterprise 8.1 and r8, allow remote authenticated users to execute arbitrary code via crafted RPC requests. Múltiples desbordamientos de buffer basados en pila del servicio Computer Associates (CA) Alert Notification Service (Alert.exe) 8.1.586.0, 8.0.4... • https://www.exploit-db.com/exploits/16410 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 19%CPEs: 6EXPL: 0CVE-2007-5325
https://notcve.org/view.php?id=CVE-2007-5325
13 Oct 2007 — Multiple buffer overflows in (1) the Message Engine and (2) AScore.dll in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allow remote attackers to execute arbitrary code via unspecified vectors. Múltiples desbordamientos de búfer en (1) el Motor de Mensajería (Message Engine) y (2) AScore.dll de CA BrightStor ARCServe BackUp v9.01 hasta R11.5, y Enterprise Backup r10.5, permiten a atacantes remotos ejecutar código de su elección a través de vectores no especificados. • http://secunia.com/advisories/27192 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 28%CPEs: 9EXPL: 0CVE-2007-5326
https://notcve.org/view.php?id=CVE-2007-5326
13 Oct 2007 — Multiple buffer overflows in (1) RPC and (2) rpcx.dll in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allow remote attackers to execute arbitrary code via unspecified vectors. Múltiples desbordamientos de búfer en (1) RPC y (2) rpcx.dll de CA BrightStor ARCServer BackUp v9.01 hasta R11.5, y Enterprise Backup r10.5, permiten a atacantes remotos ejecutar código de su elección a través de vectores no especificados. • http://osvdb.org/41368 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 32%CPEs: 6EXPL: 0CVE-2007-5327
https://notcve.org/view.php?id=CVE-2007-5327
13 Oct 2007 — Stack-based buffer overflow in the RPC interface for the Message Engine (mediasvr.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to execute arbitrary code via a long argument in the 0x10d opnum. Desbordamiento de búfer basado en pila en el interfaz RPC para el Message Engine (mediasvr.exe) en el CA BrightStor ARCServe BackUp v9.01 hasta la R11.5 y el Enterprise Backup r10.5, permite a atacantes remotos ejecutar código de su elección a través d... • http://ruder.cdut.net/blogview.asp?logID=231 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 10.0EPSS: 4%CPEs: 6EXPL: 0CVE-2007-5328 – CA BrightStor ARCserve Backup Message Engine Insecure Method Exposure Vulnerability
https://notcve.org/view.php?id=CVE-2007-5328
13 Oct 2007 — The Message Engine RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows attackers to execute arbitrary code by using certain "insecure method calls" to modify the file system and registry, aka "Privileged function exposure." El servicio Message Engine RPC en CA BrightStor ARCServe BackUp versión v9.01 hasta r11.5, y Enterprise Backup r10.5, permite a atacantes ejecutar código arbitrario mediante el uso de ciertas "insecure method calls" para modificar el sist... • http://secunia.com/advisories/27192 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 10.0EPSS: 1%CPEs: 9EXPL: 0CVE-2007-5329
https://notcve.org/view.php?id=CVE-2007-5329
13 Oct 2007 — Unspecified vulnerability in dbasvr in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, has unknown impact and attack vectors related to memory corruption. Vulnerabilidad sin especificar en el dbasvr del CA BrightStor ARCServe BackUp v9.01 hasta la R11.5 y el Enterprise Backup r10.5, tiene un impacto desconocido y vectores de ataque relacionados con la corrupción de memoria. • http://osvdb.org/41372 • CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 25%CPEs: 6EXPL: 0CVE-2007-5330
https://notcve.org/view.php?id=CVE-2007-5330
13 Oct 2007 — The cadbd RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to (1) execute arbitrary code via stack-based buffer overflows in unspecified RPC procedures, and (2) trigger memory corruption related to the use of "handle" RPC arguments as pointers. El servicio RPC cadbd de CA BrightStor ARCServer BackUp v9.01 hasta R11.5, y Enterprise Backup r10.5, permite a atacantes remotos (1) ejecutar código de su elección mediante desbordamientos de búfe... • http://osvdb.org/41373 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer CWE-399: Resource Management Errors •
CVSS: 10.0EPSS: 16%CPEs: 9EXPL: 0CVE-2007-5331
https://notcve.org/view.php?id=CVE-2007-5331
13 Oct 2007 — Queue.dll for the message queuing service (LQserver.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to execute arbitrary code via a malformed ONRPC protocol request for operation 0x76, which causes ARCserve Backup to dereference arbitrary pointers. La biblioteca Queue.dll para el servicio de colas de mensajes (LQserver.exe) en CA BrightStor ARCServe BackUp versión v9.01 hasta R11.5, y Enterprise Backup r10.5, permite a atacantes remotos ejecuta... • http://osvdb.org/41371 • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 10.0EPSS: 18%CPEs: 6EXPL: 1CVE-2007-5332 – Computer Associates BrightStor ARCserve Backup 11.5 - mediasvr caloggerd Denial of Service
https://notcve.org/view.php?id=CVE-2007-5332
13 Oct 2007 — Multiple unspecified vulnerabilities in (1) mediasvr and (2) caloggerd in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, have unknown impact and attack vectors related to memory corruption. Múltiples vulnerabilidades no especificadas en (1) mediasvr y (2) caloggerd de CA BrightStor ARCServe BackUp v9.01 hasta R11.5, y Enterprise Backup r10.5, tienen impacto desconocido y vectores de ataque relativos a corrupción de memoria. • https://www.exploit-db.com/exploits/30046 • CWE-399: Resource Management Errors •
CVSS: 6.2EPSS: 2%CPEs: 41EXPL: 0CVE-2007-3875
https://notcve.org/view.php?id=CVE-2007-3875
26 Jul 2007 — arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) 8 and certain other CA products allows remote attackers to cause a denial of service (infinite loop and loss of antivirus functionality) via an invalid "previous listing chunk number" field in a CHM file. arclib.dll anterior a 7.3.0.9 en CA Anti-Virus (formalmente eTrust Antivirus) 8 y otros ciertos productos CA permiten a atacantes remotos provocar denegación de servicio (bucles infinitos y perdida de funcionalidad antivirus) a través d... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=567 •