CVE-2007-3509
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.1 High
AI Score
Confidence
High
0.096 Low
EPSS
Percentile
94.8%
Heap-based buffer overflow in the RPC subsystem in Symantec Backup Exec for Windows Servers 10.0, 10d, and 11d allows remote attackers to cause a denial of service (process exit) and possibly execute arbitrary code via crafted ncacn_ip_tcp requests.
Affected configurations
References
labs.idefense.com/intelligence/vulnerabilities/display.php?id=553
secunia.com/advisories/26032
securityresponse.symantec.com/avcenter/security/Content/2007.07.11a.html
www.kb.cert.org/vuls/id/213697
www.osvdb.org/36111
www.securityfocus.com/bid/23897
www.securitytracker.com/id?1018366
www.vupen.com/english/advisories/2007/2505
exchange.xforce.ibmcloud.com/vulnerabilities/35340
Related
7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
8.1 High
AI Score
Confidence
High
0.096 Low
EPSS
Percentile
94.8%