CyberSec.Space Logo
返回 CVE 浏览器

CVE-2007-5331

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1270%
EPSS Percentile41.24th
Published2007年10月13日
Last Modified2026年4月23日

Vulnerability Description

Queue.dll for the message queuing service (LQserver.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to execute arbitrary code via a malformed ONRPC protocol request for operation 0x76, which causes ARCserve Backup to dereference arbitrary pointers.

Affected Platforms (CPE)

📦
Broadcom

Brightstor Arcserve Backup

= 9.01
📦
Broadcom

Brightstor Arcserve Backup

= 11.1
📦
Broadcom

Brightstor Arcserve Backup

= 11.5
📦
Broadcom

Brightstor Enterprise Backup

= 10.5
📦
Broadcom

Business Protection Suite

= 2.0
📦
Broadcom

Server Protection Suite

= 2
📦
Ca

Brightstor Arcserve Backup

= 11
📦
Ca

Business Protection Suite

= 2.0
📦
Ca

Business Protection Suite

= 2.0

References & Advisories

🔗 http://osvdb.org/41371
🔗 http://research.eeye.com/html/advisories/published/AD20071011.html
🔗 http://secunia.com/advisories/27192
🔗 http://supportconnectw.ca.com/public/storage/infodocs/basb-secnotice.asp
🔗 http://www.securityfocus.com/archive/1/482114/100/0/threaded
🔗 http://www.securityfocus.com/archive/1/482121/100/0/threaded
🔗 http://www.securityfocus.com/bid/24680
🔗 http://www.securitytracker.com/id?1018805

相关漏洞威胁

CVE-2005-026010.0

Stack-based buffer overflow in the Discovery Service for BrightStor ARCserve Backup 11.1 and earlier allows remote attackers to ex...

CVE-2006-607610.0

Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier ...

CVE-2005-169310.0

Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6.0, eTrust Antivirus r6.0 through 7.1, e...

CVE-2006-691710.0

Multiple buffer overflows in Computer Associates (CA) BrightStor ARCserve Backup R11.5 Server before SP2 allows remote attackers t...