Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
saintSAINT CorporationSAINT:62787F949E8B6DDA17BEBFCA495BA360
HistoryNov 01, 2007 - 12:00 a.m.

BrightStor ARCserve Backup LGServer rxrLogin buffer overflow

2007-11-0100:00:00
SAINT Corporation
download.saintcorporation.com
13

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.941 High

EPSS

Percentile

99.0%

JSON

Added: 11/01/2007
CVE: CVE-2007-5003
BID: 24348
OSVDB: 41353

Background

BrightStor ARCserve Backup for Laptops and Desktops is an automated backup solution optimized for low-bandwidth, intermittent network connections.

Problem

A buffer overflow vulnerability in the rxrLogin function allows remote attackers to execute arbitrary commands by sending a specially crafted request to the LGServer on port 1900.

Resolution

Install one of the patches referenced in the security notice.

References

<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599&gt;

Limitations

Exploit works on BrightStor ARCserve Backup for Laptops and Desktops 11.1 SP2.

Platforms

Windows 2000
Windows Server 2003

Related

openvas 2
saint 3
checkpoint_advisories 2
prion 1
packetstorm 1
cve 1
securityvulns 3
seebug 1
nessus 1
openvas
openvas
CA ARCserve Backup Multiple Buffer Overflow Vulnerabilities
2010-04-02 00:00:00
CA ARCserve Backup Multiple Bufffer Overflow Vulnerabilities
2010-04-02 00:00:00
saint
saint
BrightStor ARCserve Backup LGServer rxrLogin buffer overflow
2007-11-01 00:00:00
BrightStor ARCserve Backup LGServer rxrLogin buffer overflow
2007-11-01 00:00:00
BrightStor ARCserve Backup LGServer rxrLogin buffer overflow
2007-11-01 00:00:00
checkpoint_advisories
checkpoint_advisories
CA BrightStor ARCServe Backup LGServer Authentication Username Overflow (CVE-2007-5003)
2009-11-10 00:00:00
IPS-1 Protection Update for Various Enterprise Products (enterprisesoftware Version 1)
2007-10-24 00:00:00
prion
prion
Stack overflow
2007-10-01 20:17:00
packetstorm
packetstorm
CA BrightStor ARCserve for Laptops & Desktops LGServer Buffer Overflow
2009-11-26 00:00:00
cve
cve
CVE-2007-5003
2007-10-01 20:17:00
securityvulns
securityvulns
iDefense Security Advisory 09.20.07: CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities
2007-09-24 00:00:00
CA ARCServe Backup multiple security vulnerabilities
2007-09-24 00:00:00
[Full-disclosure] [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities
2007-09-24 00:00:00
seebug
seebug
CA ARCserve Backup多个远程溢出及目录遍历漏洞
2007-09-25 00:00:00
nessus
nessus
CA ARCserve Backup for Laptops and Desktops Server and CA Desktop Management Suite Multiple Remote Vulnerabilities
2013-08-13 00:00:00

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.941 High

EPSS

Percentile

99.0%

JSON
Related for SAINT:62787F949E8B6DDA17BEBFCA495BA360
openvas2saint3checkpoint_advisories2prion1packetstorm1cve1securityvulns3seebug1nessus1