CA ARCserve Backup Multiple Bufffer Overflow Vulnerabilities Network Vulnerability

Summary

Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function.

Solution

The vendor released an advisory and updates to address these issues. Please see the references for more information.

References

http://research.eeye.com/html/advisories/published/AD20070920.html

Updated on 2017-03-28

Severity

Classification

CVE CVE-2007-5003

CVSS	Base Score: 10.0 AV:N/AC:L/Au:N/C:C/I:C/A:C

Related Vulnerabilities

Adobe Flash Professional JPG Object Processing BOF Vulnerability (Windows)
3CTftpSvc TFTP Server Long Mode Buffer Overflow Vulnerability
Adobe Reader '/Registry' and '/Ordering' Buffer Overflow Vulnerability (Win)
Apple QuickTime Multiple Buffer Overflow Vulnerabilities (Windows)
BigAntSoft BigAnt IM Message Server Multiple Vulnerabilities

Take action and discover your vulnerabilities