Lucene search

[email protected]CVE-2007-1785

HistoryMar 31, 2007 - 1:19 a.m.

CVE-2007-1785

2007-03-3101:19:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

111

cve-2007-1785

rpc service

mediasvr.exe

ca brightstor arcserve backup

arbitrary code execution

vulnerability

nvd

7.5 High

AI Score

Confidence

Low

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:C/I:C/A:C

0.962 High

EPSS

Percentile

99.5%

JSON

The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdr_handle_t data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 (0xbf) RPC request.

CPENameOperatorVersion
ca:brightstor_arcserve_backupca brightstor arcserve backupeq11
broadcom:brightstor_arcserve_backupbroadcom brightstor arcserve backupeq11.5
broadcom:brightstor_arcserve_backupbroadcom brightstor arcserve backupeq11.1
broadcom:brightstor_arcserve_backupbroadcom brightstor arcserve backupeq9.01

CPE	Name	Operator	Version
ca:brightstor_arcserve_backup	ca brightstor arcserve backup	eq	11
broadcom:brightstor_arcserve_backup	broadcom brightstor arcserve backup	eq	11.5
broadcom:brightstor_arcserve_backup	broadcom brightstor arcserve backup	eq	11.1
broadcom:brightstor_arcserve_backup	broadcom brightstor arcserve backup	eq	9.01

References

archives.neohapsis.com/archives/fulldisclosure/2007-03/0467.html

secunia.com/advisories/24682

securityreason.com/securityalert/2509

supportconnectw.ca.com/public/storage/infodocs/babmedser-secnotice.asp

www.kb.cert.org/vuls/id/151305

www.securityfocus.com/archive/1/464270/100/0/threaded

www.securityfocus.com/archive/1/464343/100/0/threaded

www.securityfocus.com/bid/23209

www.securitytracker.com/id?1017830

www.shirkdog.us/camediasvrremote.py

www.shirkdog.us/shk-004.html

www.vupen.com/english/advisories/2007/1161

exchange.xforce.ibmcloud.com/vulnerabilities/33316

Social References

7.5 High

AI Score

Confidence

Low

7.1 High

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:C/I:C/A:C

0.962 High

EPSS

Percentile

99.5%

JSON

Related for CVE-2007-1785

checkpoint_advisories3 prion2 cert1 securityvulns3 nessus1 cve1