CyberSec.Space Logo
Back to CVE Browser

CVE-2007-3825

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.2000%
EPSS Percentile28.13th
PublishedJul 18, 2007
Last ModifiedApr 23, 2026

Vulnerability Description

Multiple stack-based buffer overflows in the RPC implementation in alert.exe before 8.0.255.0 in CA (formerly Computer Associates) Alert Notification Server, as used in Threat Manager for the Enterprise, Protection Suites, certain BrightStor ARCserve products, and BrightStor Enterprise Backup, allow remote attackers to execute arbitrary code by sending certain data to unspecified RPC procedures.

Affected Platforms (CPE)

πŸ“¦
Broadcom

Alert Notification Server

All versions
πŸ“¦
Broadcom

Brightstor Arcserve Backup

= 9.01
πŸ“¦
Broadcom

Brightstor Arcserve Backup

= 11.1
πŸ“¦
Broadcom

Brightstor Arcserve Backup

= 11.5
πŸ“¦
Broadcom

Brightstor Enterprise Backup

= 10.5
πŸ“¦
Ca

Anti Virus For The Enterprise

= 8
πŸ“¦
Ca

Brightstor Arcserve Backup

= 11
πŸ“¦
Ca

Brightstor Arcserve Client

All versions
πŸ“¦
Ca

Protection Suites

= r3
πŸ“¦
Ca

Threat Manager

= 8

References & Advisories

πŸ”— http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=561
πŸ”— http://secunia.com/advisories/26088
πŸ”— http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-secnotice.asp
πŸ”— http://www.securityfocus.com/bid/24947
πŸ”— http://www.securitytracker.com/id?1018402
πŸ”— http://www.securitytracker.com/id?1018403
πŸ”— http://www.securitytracker.com/id?1018404
πŸ”— http://www.securitytracker.com/id?1018405

Related Vulnerabilities

CVE-2019-143058.8

Several Ricoh printers have multiple buffer overflows parsing HTTP parameter settings for Wi-Fi, mDNS, POP3, SMTP, and notificatio...

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...

CVE-2026-48853

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc all...