Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2007-1785
HistoryMar 31, 2007 - 1:19 a.m.

CVE-2007-1785

2007-03-3101:19:00
mitre
web.nvd.nist.gov
118
2
cve-2007-1785
rpc service
mediasvr.exe
ca brightstor arcserve backup
arbitrary code execution
vulnerability
nvd

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.962

Percentile

99.5%

JSON

The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdr_handle_t data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 (0xbf) RPC request.

Affected configurations

Nvd
Node
broadcombrightstor_arcserve_backupMatch9.01
OR
broadcombrightstor_arcserve_backupMatch11.1
OR
broadcombrightstor_arcserve_backupMatch11.5
OR
broadcombrightstor_arcserve_backupMatch11.5sp1
OR
broadcombrightstor_arcserve_backupMatch11.5sp2
OR
cabrightstor_arcserve_backupMatch11windows
VendorProductVersionCPE
broadcombrightstor_arcserve_backup9.01cpe:2.3:a:broadcom:brightstor_arcserve_backup:9.01:*:*:*:*:*:*:*
broadcombrightstor_arcserve_backup11.1cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
broadcombrightstor_arcserve_backup11.5cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:*:*:*:*:*:*:*
broadcombrightstor_arcserve_backup11.5cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp1:*:*:*:*:*:*
broadcombrightstor_arcserve_backup11.5cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:sp2:*:*:*:*:*:*
cabrightstor_arcserve_backup11cpe:2.3:a:ca:brightstor_arcserve_backup:11:*:windows:*:*:*:*:*

Social References

More

Related

checkpoint_advisories 3
cvelist 2
nvd 2
prion 2
cert 1
exploitdb 1
securityvulns 3
nessus 1
cve 1
checkpoint_advisories
checkpoint_advisories
CA BrightStor ARCserve Backup Media Server SUN-RPC Procedure Code Execution - Ver2 (CVE-2007-1785)
2014-01-07 00:00:00
CA BrightStor ARCserve Backup Media Server SUN-RPC Procedure Code Execution (CVE-2007-1785)
2010-03-24 00:00:00
Computer Associates BrightStor ARCServe BackUp xdr_handle_t Code Execution - Ver2 (CVE-2007-1785)
2014-02-03 00:00:00
cvelist
cvelist
CVE-2007-1785
2007-03-31 01:00:00
CVE-2007-2139
2007-04-25 20:00:00
nvd
nvd
CVE-2007-1785
2007-03-31 01:19:00
CVE-2007-2139
2007-04-25 20:19:00
prion
prion
Cross site request forgery (csrf)
2007-03-31 01:19:00
Stack overflow
2007-04-25 20:19:00
cert
cert
CA Brightstor ARCserve Backup fails to properly process RPC requests
2007-04-02 00:00:00
exploitdb
exploitdb
CA BrightStor Backup 11.5.2.0 - 'Mediasvr.exe' Remote Code
2007-03-29 00:00:00
securityvulns
securityvulns
CA BrightStor ARCserve backup system multiple buffer overflows
2007-05-17 00:00:00
[CAID 35198, 35276]: CA BrightStor ARCserve Backup Media Server Vulnerabilities
2007-04-27 00:00:00
Brightstor ArcServe Backup buffer overflow
2007-04-01 00:00:00
nessus
nessus
CA BrightStor ARCserve Backup Multiple Vulnerabilities (QO87569)
2007-04-25 00:00:00
cve
cve
CVE-2007-2139
2007-04-25 20:19:00

CVSS2

7.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:C/I:C/A:C

AI Score

7.3

Confidence

Low

EPSS

0.962

Percentile

99.5%

JSON
Related for CVE-2007-1785
checkpoint_advisories3cvelist2nvd2prion2cert1exploitdb1securityvulns3nessus1cve1