Lucene search
K

9 matches found

Check Point Advisories
Check Point Advisories
added 2010/08/11 12:0 a.m.8 views

CA BrightStor ARCserve Backup Tape Engine RPC Code Execution (CVE-2007-0168)

There exists a vulnerability in Computer Associates BrightStor ARCserve Backup products. The flaw is due to a design weakness in the processing of RPC requests sent to the Tape Engine service. A remote unauthenticated attacker may leverage this vulnerability to inject and execute arbitrary code o...

7.5CVSS7.5AI score0.19776EPSS
Exploits1
Prion
Prion
added 2008/10/14 9:10 p.m.19 views

Cross site request forgery (csrf)

Unspecified vulnerability in the tape engine service in asdbapi.dll in CA ARCserve Backup formerly BrightStor ARCserve Backup r11.1 through r12.0 allows remote attackers to cause a denial of service crash via a crafted request...

5CVSS6.9AI score0.08232EPSS
Exploits1References7Affected Software3
CVE
CVE
added 2008/10/14 8:0 p.m.66 views

CVE-2008-4398

CVE-2008-4398 affects CA ARCserve Backup Tape Engine (asdbapi.dll) on Windows r11.1–r12.0. The issue is insufficient input validation in the Tape Engine service, allowing a remote attacker to trigger a denial-of-service (crash) by sending a crafted RPC message. Public advisories from CA identify ...

5CVSS6.3AI score0.08232EPSS
Exploits1References7Affected Software5
securityvulns
securityvulns
added 2007/04/01 12:0 a.m.50 views

CA BrightStor ARCserve Backup Mediasvr.exe vulnerability

CA is aware that functional exploit code was publicized on March 30, 2007 for a CA BrightStor ARCserve Backup Mediasvr.exe vulnerability. We have verified that a high risk vulnerability does exist and we are now working on a patch to address the issue. CA recommends that BrightStor ARCserve Backu...

0.3AI score
Exploits0
Prion
Prion
added 2007/01/11 10:28 p.m.15 views

Buffer overflow

Multiple buffer overflows in Computer Associates CA BrightStor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Server/Business Protection Suite r2 allow remote attackers to execute arbitrary code via RPC requests with crafted data for opnums 1 0x2F and 2 0x75 in the a Message...

7.5CVSS8AI score0.68809EPSS
Exploits16References17Affected Software3
NVD
NVD
added 2007/01/11 10:28 p.m.22 views

CVE-2007-0168

The Tape Engine service in Computer Associates CA BrightStor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Server/Business Protection Suite r2 allows remote attackers to execute arbitrary code via certain data in opnum 0xBF in an RPC request, which is directly executed...

7.5CVSS7.5AI score0.19776EPSS
Exploits1References14
Cvelist
Cvelist
added 2007/01/11 10:0 p.m.31 views

CVE-2007-0169

Multiple buffer overflows in Computer Associates CA BrightStor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Server/Business Protection Suite r2 allow remote attackers to execute arbitrary code via RPC requests with crafted data for opnums 1 0x2F and 2 0x75 in the a Message...

7.5AI score0.68809EPSS
Exploits16References17
CVE
CVE
added 2007/01/11 10:0 p.m.61 views

CVE-2007-0168

CVE-2007-0168 affects the Tape Engine RPC service in CA BrightStor ARCserve Backup (versions 9.01–11.5, Enterprise Backup 10.5, CA Server/Business Protection Suite r2). The flaw arises from the RPC handler for opnum 0xBF, which directly executes user-supplied data, enabling remote attackers to ex...

7.5CVSS7.4AI score0.19776EPSS
Exploits1References14Affected Software3
Zero Day Initiative
Zero Day Initiative
added 2007/01/11 12:0 a.m.45 views

CA BrightStor ARCserve Backup Tape Engine Code Execution Vulnerability

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates BrightStor ARCserve Backup. User interaction is not required to exploit this vulnerability. The specific flaw exists in the handling of RPC requests to the Tape Engine service which...

7.5CVSS2.3AI score0.19776EPSS
Exploits1References1
Rows per page
Query Builder