CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
96.5%
Multiple stack-based buffer overflows in Computer Associates (CA) Alert Notification Service (Alert.exe) 8.1.586.0, 8.0.450.0, and 7.1.758.0, as used in multiple CA products including Anti-Virus for the Enterprise 7.1 through r11.1 and Threat Manager for the Enterprise 8.1 and r8, allow remote authenticated users to execute arbitrary code via crafted RPC requests.
Vendor | Product | Version | CPE |
---|---|---|---|
broadcom | anti-virus_for_the_enterprise | 7.1 | cpe:2.3:a:broadcom:anti-virus_for_the_enterprise:7.1:*:*:*:*:*:*:* |
broadcom | anti-virus_for_the_enterprise | 8 | cpe:2.3:a:broadcom:anti-virus_for_the_enterprise:8:*:*:*:*:*:*:* |
broadcom | anti-virus_for_the_enterprise | 8.1 | cpe:2.3:a:broadcom:anti-virus_for_the_enterprise:8.1:*:*:*:*:*:*:* |
broadcom | brightstor_arcserve_backup | 11.1 | cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:* |
broadcom | brightstor_arcserve_backup | 11.5 | cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:*:*:*:*:*:*:* |
ca | brightstor_arcserve_backup | 11 | cpe:2.3:a:ca:brightstor_arcserve_backup:11:*:windows:*:*:*:*:* |
ca | threat_manager_for_the_enterprise | r8 | cpe:2.3:a:ca:threat_manager_for_the_enterprise:r8:*:*:*:*:*:*:* |
ca | threat_manager_for_the_enterprise | r8.1 | cpe:2.3:a:ca:threat_manager_for_the_enterprise:r8.1:*:*:*:*:*:*:* |
community.ca.com/blogs/casecurityresponseblog/archive/2008/04/04/ca-alert-notification-server-multiple-vulnerabilities.aspx
labs.idefense.com/intelligence/vulnerabilities/display.php?id=679
secunia.com/advisories/29665
securityreason.com/securityalert/3799
www.securityfocus.com/archive/1/490466/100/0/threaded
www.securityfocus.com/bid/28605
www.securitytracker.com/id?1019789
www.securitytracker.com/id?1019790
www.vupen.com/english/advisories/2008/1103/references
exchange.xforce.ibmcloud.com/vulnerabilities/41639
support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=173103