10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.941 High
EPSS
Percentile
99.0%
Added: 11/01/2007
CVE: CVE-2007-5003
BID: 24348
OSVDB: 41353
BrightStor ARCserve Backup for Laptops and Desktops is an automated backup solution optimized for low-bandwidth, intermittent network connections.
A buffer overflow vulnerability in the rxrLogin function allows remote attackers to execute arbitrary commands by sending a specially crafted request to the LGServer on port 1900.
Install one of the patches referenced in the security notice.
<http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599>
Exploit works on BrightStor ARCserve Backup for Laptops and Desktops 11.1 SP2.
Windows 2000
Windows Server 2003