CVE-2007-5004

Severity

93%

Complexity

86%

Confidentiality

165%

Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to execute arbitrary code via a long username and a certain "useless" password.

Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to execute arbitrary code via a long username and a certain "useless" password.

CVSS 2.0 Base Score 9.3. CVSS Attack Vector: network. CVSS Attack Complexity: medium. CVSS Vector: (AV:N/AC:M/Au:N/C:C/I:C/A:C).

Overview

Type

Computer Associates

First reported 17 years ago

2007-10-01 20:17:00

Last updated 6 years ago

2018-10-15 21:39:00

Affected Software

Computer Associates BrightStor ARCserve Backup Laptops_Desktops r4.0

4.0

Computer Associates BrightStor ARCserve Backup Laptops_Desktops 11.0

11.0

Computer Associates BrightStor ARCserve Backup Laptops_Desktops 11.1

11.1

Computer Associates BrightStor ARCserve Backup Laptops_Desktops 11.1 SP1

11.1

Computer Associates BrightStor ARCserve Backup Laptops_Desktops r11.5

11.5

Computer Associates Desktop Management Suite 11.0

11.0

Computer Associates Desktop Management Suite 11.1

11.1

Computer Associates Desktop Management Suite 11.2

11.2

References

20070920 Multiple Vulnerabilities in CA ARCserve for Laptops & Desktops

25606

Patch, Vendor Advisory

http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp

Patch

http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006

Patch

http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35675

Patch

20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities

24348

1018728

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.