CVE-2007-5006

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0110%

EPSS Percentile26.82th

Published2007年10月1日

Last Modified2026年4月23日

Vulnerability Description

Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 do not verify if a peer is authenticated, which allows remote attackers to add and delete users, and start client restores.

Affected Platforms (CPE)

📦

Broadcom

Brightstor Arcserve Backup Laptops Desktops

= 4.0

📦

Broadcom

Brightstor Arcserve Backup Laptops Desktops

= 11.0

📦

Broadcom

Brightstor Arcserve Backup Laptops Desktops

= 11.1

📦

Broadcom

Brightstor Arcserve Backup Laptops Desktops

= 11.1

📦

Broadcom

Brightstor Arcserve Backup Laptops Desktops

= 11.5

📦

Broadcom

Desktop Management Suite

= 11.0

📦

Broadcom

Desktop Management Suite

= 11.1

📦

Broadcom

Desktop Management Suite

= 11.2

📦

Protection Suites

= r2

References & Advisories

🔗 http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=598

🔗 http://secunia.com/advisories/25606

🔗 http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp

🔗 http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006

🔗 http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35677

🔗 http://www.securityfocus.com/archive/1/480252/100/100/threaded

🔗 http://www.securityfocus.com/bid/24348

🔗 http://www.securitytracker.com/id?1018728

Vulnerability Description

Affected Platforms (CPE)

Brightstor Arcserve Backup Laptops Desktops

Brightstor Arcserve Backup Laptops Desktops

Brightstor Arcserve Backup Laptops Desktops

Brightstor Arcserve Backup Laptops Desktops

Brightstor Arcserve Backup Laptops Desktops

Desktop Management Suite

Desktop Management Suite

Desktop Management Suite

Protection Suites

References & Advisories

関連する脆弱性情報