返回 CVE 瀏覽器

CVE-2007-5328

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0380%

EPSS Percentile21.94th

Published2007年10月13日

Last Modified2026年4月23日

Vulnerability Description

The Message Engine RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows attackers to execute arbitrary code by using certain "insecure method calls" to modify the file system and registry, aka "Privileged function exposure."

Affected Platforms (CPE)

📦

Broadcom

Brightstor Arcserve Backup

= 9.01

📦

Broadcom

Brightstor Arcserve Backup

= 10.5

📦

Broadcom

Brightstor Arcserve Backup

= 11

📦

Broadcom

Brightstor Arcserve Backup

= 11.1

📦

Broadcom

Brightstor Arcserve Backup

= 11.5

📦

Broadcom

Brightstor Enterprise Backup

= 10.5

References & Advisories

🔗 http://secunia.com/advisories/27192

🔗 http://supportconnectw.ca.com/public/storage/infodocs/basb-secnotice.asp

🔗 http://www.securityfocus.com/archive/1/482121/100/0/threaded

🔗 http://www.securityfocus.com/archive/1/484229/100/0/threaded

🔗 http://www.securityfocus.com/bid/26015

🔗 http://www.securitytracker.com/id?1018805

🔗 http://www.vupen.com/english/advisories/2007/3470

🔗 http://www.zerodayinitiative.com/advisories/ZDI-07-069.html

相關漏洞威脅

CVE-2005-026010.0

Stack-based buffer overflow in the Discovery Service for BrightStor ARCserve Backup 11.1 and earlier allows remote attackers to ex...

CVE-2006-607610.0

Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier ...

CVE-2005-169310.0

Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6.0, eTrust Antivirus r6.0 through 7.1, e...

CVE-2006-691710.0

Multiple buffer overflows in Computer Associates (CA) BrightStor ARCserve Backup R11.5 Server before SP2 allows remote attackers t...