Search

Find a vulnerability

Search criteria

    22 vulnerabilities found for brightstor_arcserve_backup_laptops_desktops by broadcom

    CVE-2007-5005 (GCVE-0-2007-5005)

    Vulnerability from nvd – Published: 2007-10-01 20:00 – Updated: 2024-08-07 15:17
    VLAI
    Summary
    Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to upload and overwrite arbitrary files via a ..\ (dot dot backslash) sequence in the destination filename argument to sub-function 8 in the rxrReceiveFileFromServer command.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2007-09-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T15:17:27.860Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "24348",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24348"
              },
              {
                "name": "25606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25606"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35676"
              },
              {
                "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
              },
              {
                "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_EEYE",
                  "x_transferred"
                ],
                "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
              },
              {
                "name": "1018728",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018728"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-09-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to upload and overwrite arbitrary files via a ..\\ (dot dot backslash) sequence in the destination filename argument to sub-function 8 in the rxrReceiveFileFromServer command."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-15T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "24348",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24348"
            },
            {
              "name": "25606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25606"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35676"
            },
            {
              "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
            },
            {
              "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
              "tags": [
                "third-party-advisory",
                "x_refsource_EEYE"
              ],
              "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
            },
            {
              "name": "1018728",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018728"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-5005",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to upload and overwrite arbitrary files via a ..\\ (dot dot backslash) sequence in the destination filename argument to sub-function 8 in the rxrReceiveFileFromServer command."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "24348",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24348"
                },
                {
                  "name": "25606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25606"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35676",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35676"
                },
                {
                  "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
                },
                {
                  "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                  "refsource": "EEYE",
                  "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
                },
                {
                  "name": "1018728",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018728"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-5005",
        "datePublished": "2007-10-01T20:00:00.000Z",
        "dateReserved": "2007-09-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T15:17:27.860Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-5006 (GCVE-0-2007-5006)

    Vulnerability from nvd – Published: 2007-10-01 20:00 – Updated: 2024-08-07 15:17
    VLAI
    Summary
    Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 do not verify if a peer is authenticated, which allows remote attackers to add and delete users, and start client restores.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2007-09-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T15:17:27.899Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20070920 CA ARCserve Backup for Laptops and Desktops Authentication Bypass Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=598"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35677"
              },
              {
                "name": "24348",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24348"
              },
              {
                "name": "25606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25606"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
              },
              {
                "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
              },
              {
                "name": "1018728",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018728"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-09-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 do not verify if a peer is authenticated, which allows remote attackers to add and delete users, and start client restores."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-15T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20070920 CA ARCserve Backup for Laptops and Desktops Authentication Bypass Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=598"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35677"
            },
            {
              "name": "24348",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24348"
            },
            {
              "name": "25606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25606"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
            },
            {
              "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
            },
            {
              "name": "1018728",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018728"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-5006",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 do not verify if a peer is authenticated, which allows remote attackers to add and delete users, and start client restores."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20070920 CA ARCserve Backup for Laptops and Desktops Authentication Bypass Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=598"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35677",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35677"
                },
                {
                  "name": "24348",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24348"
                },
                {
                  "name": "25606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25606"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
                },
                {
                  "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
                },
                {
                  "name": "1018728",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018728"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-5006",
        "datePublished": "2007-10-01T20:00:00.000Z",
        "dateReserved": "2007-09-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T15:17:27.899Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-5004 (GCVE-0-2007-5004)

    Vulnerability from nvd – Published: 2007-10-01 20:00 – Updated: 2024-08-07 15:17
    VLAI
    Summary
    Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to execute arbitrary code via a long username and a certain "useless" password.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2007-09-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T15:17:27.831Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "24348",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24348"
              },
              {
                "name": "25606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25606"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
              },
              {
                "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35675"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
              },
              {
                "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_EEYE",
                  "x_transferred"
                ],
                "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
              },
              {
                "name": "1018728",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018728"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-09-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to execute arbitrary code via a long username and a certain \"useless\" password."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-15T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "24348",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24348"
            },
            {
              "name": "25606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25606"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
            },
            {
              "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35675"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
            },
            {
              "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
              "tags": [
                "third-party-advisory",
                "x_refsource_EEYE"
              ],
              "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
            },
            {
              "name": "1018728",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018728"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-5004",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to execute arbitrary code via a long username and a certain \"useless\" password."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "24348",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24348"
                },
                {
                  "name": "25606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25606"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
                },
                {
                  "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35675",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35675"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
                },
                {
                  "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                  "refsource": "EEYE",
                  "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
                },
                {
                  "name": "1018728",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018728"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-5004",
        "datePublished": "2007-10-01T20:00:00.000Z",
        "dateReserved": "2007-09-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T15:17:27.831Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-5003 (GCVE-0-2007-5003)

    Vulnerability from nvd – Published: 2007-10-01 20:00 – Updated: 2024-08-07 15:17
    VLAI
    Summary
    Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/24348 vdb-entryx_refsource_BID
    http://www.ca.com/us/securityadvisor/vulninfo/vul… x_refsource_CONFIRM
    http://secunia.com/advisories/25606 third-party-advisoryx_refsource_SECUNIA
    http://labs.idefense.com/intelligence/vulnerabili… third-party-advisoryx_refsource_IDEFENSE
    http://www.ca.com/us/securityadvisor/newsinfo/col… x_refsource_CONFIRM
    http://www.securityfocus.com/archive/1/480252/100… mailing-listx_refsource_BUGTRAQ
    http://supportconnectw.ca.com/public/sams/lifegua… x_refsource_CONFIRM
    http://research.eeye.com/html/advisories/publishe… third-party-advisoryx_refsource_EEYE
    http://www.securitytracker.com/id?1018728 vdb-entryx_refsource_SECTRACK
    Date Public
    2007-09-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T15:17:28.199Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "24348",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24348"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35674"
              },
              {
                "name": "25606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25606"
              },
              {
                "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
              },
              {
                "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
              },
              {
                "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_EEYE",
                  "x_transferred"
                ],
                "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
              },
              {
                "name": "1018728",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018728"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-09-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-15T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "24348",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24348"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35674"
            },
            {
              "name": "25606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25606"
            },
            {
              "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
            },
            {
              "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
            },
            {
              "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
              "tags": [
                "third-party-advisory",
                "x_refsource_EEYE"
              ],
              "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
            },
            {
              "name": "1018728",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018728"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-5003",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "24348",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24348"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35674",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35674"
                },
                {
                  "name": "25606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25606"
                },
                {
                  "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
                },
                {
                  "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
                },
                {
                  "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                  "refsource": "EEYE",
                  "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
                },
                {
                  "name": "1018728",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018728"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-5003",
        "datePublished": "2007-10-01T20:00:00.000Z",
        "dateReserved": "2007-09-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T15:17:28.199Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-3216 (GCVE-0-2007-3216)

    Vulnerability from nvd – Published: 2007-06-14 22:00 – Updated: 2024-08-07 14:05
    VLAI
    Summary
    Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via crafted arguments to the (1) rxsAddNewUser, (2) rxsSetUserInfo, (3) rxsRenameUser, (4) rxsSetMessageLogSettings, (5) rxsExportData, (6) rxsSetServerOptions, (7) rxsRenameFile, (8) rxsACIManageSend, (9) rxsExportUser, (10) rxsImportUser, (11) rxsMoveUserData, (12) rxsUseLicenseIni, (13) rxsLicGetSiteId, (14) rxsGetLogFileNames, (15) rxsGetBackupLog, (16) rxsBackupComplete, (17) rxsSetDataProtectionSecurityData, (18) rxsSetDefaultConfigName, (19) rxsGetMessageLogSettings, (20) rxsHWDiskGetTotal, (21) rxsHWDiskGetFree, (22) rxsGetSubDirs, (23) rxsGetServerDBPathName, (24) rxsSetServerOptions, (25) rxsDeleteFile, (26) rxsACIManageSend, (27) rxcReadBackupSetList, (28) rxcWriteConfigInfo, (29) rxcSetAssetManagement, (30) rxcWriteFileListForRestore, (31) rxcReadSaveSetProfile, (32) rxcInitSaveSetProfile, (33) rxcAddSaveSetNextAppList, (34) rxcAddSaveSetNextFilesPathList, (35) rxcAddNextBackupSetIncWildCard, (36) rxcGetRevisions, (37) rxrAddMovedUser, (38) rxrSetClientVersion, or (39) rxsSetDataGrowthScheduleAndFilter commands.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Date Public
    2007-06-11 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T14:05:29.275Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "24348",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24348"
              },
              {
                "name": "brightstor-unspecified-code-execution(34805)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34805"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/bsabld-securitynotice.asp"
              },
              {
                "name": "25606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25606"
              },
              {
                "name": "1018216",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018216"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35673"
              },
              {
                "name": "35329",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/35329"
              },
              {
                "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
              },
              {
                "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
              },
              {
                "name": "ADV-2007-2121",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/2121"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
              },
              {
                "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_EEYE",
                  "x_transferred"
                ],
                "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
              },
              {
                "name": "1018728",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018728"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://research.eeye.com/html/advisories/upcoming/20070604.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-06-11T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via crafted arguments to the (1) rxsAddNewUser, (2) rxsSetUserInfo, (3) rxsRenameUser, (4) rxsSetMessageLogSettings, (5) rxsExportData, (6) rxsSetServerOptions, (7) rxsRenameFile, (8) rxsACIManageSend, (9) rxsExportUser, (10) rxsImportUser, (11) rxsMoveUserData, (12) rxsUseLicenseIni, (13) rxsLicGetSiteId, (14) rxsGetLogFileNames, (15) rxsGetBackupLog, (16) rxsBackupComplete, (17) rxsSetDataProtectionSecurityData, (18) rxsSetDefaultConfigName, (19) rxsGetMessageLogSettings, (20) rxsHWDiskGetTotal, (21) rxsHWDiskGetFree, (22) rxsGetSubDirs, (23) rxsGetServerDBPathName, (24) rxsSetServerOptions, (25) rxsDeleteFile, (26) rxsACIManageSend, (27) rxcReadBackupSetList, (28) rxcWriteConfigInfo, (29) rxcSetAssetManagement, (30) rxcWriteFileListForRestore, (31) rxcReadSaveSetProfile, (32) rxcInitSaveSetProfile, (33) rxcAddSaveSetNextAppList, (34) rxcAddSaveSetNextFilesPathList, (35) rxcAddNextBackupSetIncWildCard, (36) rxcGetRevisions, (37) rxrAddMovedUser, (38) rxrSetClientVersion, or (39) rxsSetDataGrowthScheduleAndFilter commands."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "24348",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24348"
            },
            {
              "name": "brightstor-unspecified-code-execution(34805)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34805"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/bsabld-securitynotice.asp"
            },
            {
              "name": "25606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25606"
            },
            {
              "name": "1018216",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018216"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35673"
            },
            {
              "name": "35329",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/35329"
            },
            {
              "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
            },
            {
              "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
            },
            {
              "name": "ADV-2007-2121",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/2121"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
            },
            {
              "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
              "tags": [
                "third-party-advisory",
                "x_refsource_EEYE"
              ],
              "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
            },
            {
              "name": "1018728",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018728"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://research.eeye.com/html/advisories/upcoming/20070604.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-3216",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via crafted arguments to the (1) rxsAddNewUser, (2) rxsSetUserInfo, (3) rxsRenameUser, (4) rxsSetMessageLogSettings, (5) rxsExportData, (6) rxsSetServerOptions, (7) rxsRenameFile, (8) rxsACIManageSend, (9) rxsExportUser, (10) rxsImportUser, (11) rxsMoveUserData, (12) rxsUseLicenseIni, (13) rxsLicGetSiteId, (14) rxsGetLogFileNames, (15) rxsGetBackupLog, (16) rxsBackupComplete, (17) rxsSetDataProtectionSecurityData, (18) rxsSetDefaultConfigName, (19) rxsGetMessageLogSettings, (20) rxsHWDiskGetTotal, (21) rxsHWDiskGetFree, (22) rxsGetSubDirs, (23) rxsGetServerDBPathName, (24) rxsSetServerOptions, (25) rxsDeleteFile, (26) rxsACIManageSend, (27) rxcReadBackupSetList, (28) rxcWriteConfigInfo, (29) rxcSetAssetManagement, (30) rxcWriteFileListForRestore, (31) rxcReadSaveSetProfile, (32) rxcInitSaveSetProfile, (33) rxcAddSaveSetNextAppList, (34) rxcAddSaveSetNextFilesPathList, (35) rxcAddNextBackupSetIncWildCard, (36) rxcGetRevisions, (37) rxrAddMovedUser, (38) rxrSetClientVersion, or (39) rxsSetDataGrowthScheduleAndFilter commands."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "24348",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24348"
                },
                {
                  "name": "brightstor-unspecified-code-execution(34805)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34805"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/bsabld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/bsabld-securitynotice.asp"
                },
                {
                  "name": "25606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25606"
                },
                {
                  "name": "1018216",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018216"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35673",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35673"
                },
                {
                  "name": "35329",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/35329"
                },
                {
                  "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
                },
                {
                  "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
                },
                {
                  "name": "ADV-2007-2121",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/2121"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
                },
                {
                  "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                  "refsource": "EEYE",
                  "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
                },
                {
                  "name": "1018728",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018728"
                },
                {
                  "name": "http://research.eeye.com/html/advisories/upcoming/20070604.html",
                  "refsource": "MISC",
                  "url": "http://research.eeye.com/html/advisories/upcoming/20070604.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-3216",
        "datePublished": "2007-06-14T22:00:00.000Z",
        "dateReserved": "2007-06-14T00:00:00.000Z",
        "dateUpdated": "2024-08-07T14:05:29.275Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-0673 (GCVE-0-2007-0673)

    Vulnerability from nvd – Published: 2007-02-03 01:00 – Updated: 2024-08-07 12:26
    VLAI
    Summary
    LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/archive/1/458650/100… mailing-listx_refsource_BUGTRAQ
    http://www.securityfocus.com/bid/22337 vdb-entryx_refsource_BID
    http://osvdb.org/32948 vdb-entryx_refsource_OSVDB
    http://securityreason.com/securityalert/2218 third-party-advisoryx_refsource_SREASON
    http://supportconnectw.ca.com/public/sams/lifegua… x_refsource_CONFIRM
    Date Public
    2007-01-31 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:26:54.281Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20070131 Remote DOS BrightStor ARCserve Backup for Laptops \u0026 Desktops",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/458650/100/0/threaded"
              },
              {
                "name": "22337",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22337"
              },
              {
                "name": "32948",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/32948"
              },
              {
                "name": "2218",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/2218"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-01-31T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "LGSERVER.EXE in BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20070131 Remote DOS BrightStor ARCserve Backup for Laptops \u0026 Desktops",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/458650/100/0/threaded"
            },
            {
              "name": "22337",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22337"
            },
            {
              "name": "32948",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/32948"
            },
            {
              "name": "2218",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/2218"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-0673",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "LGSERVER.EXE in BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20070131 Remote DOS BrightStor ARCserve Backup for Laptops \u0026 Desktops",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/458650/100/0/threaded"
                },
                {
                  "name": "22337",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22337"
                },
                {
                  "name": "32948",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/32948"
                },
                {
                  "name": "2218",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/2218"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-0673",
        "datePublished": "2007-02-03T01:00:00.000Z",
        "dateReserved": "2007-02-02T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:26:54.281Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-0672 (GCVE-0-2007-0672)

    Vulnerability from nvd – Published: 2007-02-03 01:00 – Updated: 2024-08-07 12:26
    VLAI
    Summary
    LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\Server\data\transfer\.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2007-01-31 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:26:54.307Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20070131 Remote Unauthenticated Resource Exhaustion CA Mobile BackupService",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/458653/100/0/threaded"
              },
              {
                "name": "22339",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22339"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-01-31T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\\Server\\data\\transfer\\."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20070131 Remote Unauthenticated Resource Exhaustion CA Mobile BackupService",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/458653/100/0/threaded"
            },
            {
              "name": "22339",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22339"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-0672",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\\Server\\data\\transfer\\."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20070131 Remote Unauthenticated Resource Exhaustion CA Mobile BackupService",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/458653/100/0/threaded"
                },
                {
                  "name": "22339",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22339"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-0672",
        "datePublished": "2007-02-03T01:00:00.000Z",
        "dateReserved": "2007-02-02T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:26:54.307Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-0449 (GCVE-0-2007-0449)

    Vulnerability from nvd – Published: 2007-01-23 21:00 – Updated: 2024-08-07 12:19
    VLAI
    Summary
    Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/22340 vdb-entryx_refsource_BID
    http://www3.ca.com/securityadvisor/newsinfo/colla… x_refsource_CONFIRM
    http://www.osvdb.org/31593 vdb-entryx_refsource_OSVDB
    http://www.kb.cert.org/vuls/id/611276 third-party-advisoryx_refsource_CERT-VN
    http://www.securityfocus.com/archive/1/458648/100… mailing-listx_refsource_BUGTRAQ
    http://secunia.com/advisories/23897 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/archive/1/458644/100… mailing-listx_refsource_BUGTRAQ
    http://www3.ca.com/securityadvisor/vulninfo/Vuln.… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/archive/1/457945/30/… mailing-listx_refsource_BUGTRAQ
    http://www.securityfocus.com/bid/22199 vdb-entryx_refsource_BID
    http://www.securityfocus.com/bid/22342 vdb-entryx_refsource_BID
    http://www.vupen.com/english/advisories/2007/0314 vdb-entryx_refsource_VUPEN
    http://www.kb.cert.org/vuls/id/357308 third-party-advisoryx_refsource_CERT-VN
    http://securitytracker.com/id?1017548 vdb-entryx_refsource_SECTRACK
    http://supportconnectw.ca.com/public/sams/lifegua… x_refsource_CONFIRM
    Date Public
    2007-01-23 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:19:30.097Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "22340",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22340"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97696"
              },
              {
                "name": "31593",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/31593"
              },
              {
                "name": "VU#611276",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/611276"
              },
              {
                "name": "20070131 Remote Unauthenticated Code Execution II CA BrightStor ARCserve Backup for Laptops \u0026 Desktops",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/458648/100/0/threaded"
              },
              {
                "name": "23897",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/23897"
              },
              {
                "name": "20070131 Remote Unauthenticated Code Execution CA BrightStor ARCserve Backup",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/458644/100/0/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993"
              },
              {
                "name": "ca-multiple-unspecified-bo(31704)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31704"
              },
              {
                "name": "20070124 [CAID 34993]: CA BrightStor ARCserve Backup for Laptops and Desktops Multiple Overflow Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/457945/30/8460/threaded"
              },
              {
                "name": "22199",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22199"
              },
              {
                "name": "22342",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22342"
              },
              {
                "name": "ADV-2007-0314",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/0314"
              },
              {
                "name": "VU#357308",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/357308"
              },
              {
                "name": "1017548",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017548"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-01-23T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "22340",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22340"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97696"
            },
            {
              "name": "31593",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/31593"
            },
            {
              "name": "VU#611276",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/611276"
            },
            {
              "name": "20070131 Remote Unauthenticated Code Execution II CA BrightStor ARCserve Backup for Laptops \u0026 Desktops",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/458648/100/0/threaded"
            },
            {
              "name": "23897",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/23897"
            },
            {
              "name": "20070131 Remote Unauthenticated Code Execution CA BrightStor ARCserve Backup",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/458644/100/0/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993"
            },
            {
              "name": "ca-multiple-unspecified-bo(31704)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31704"
            },
            {
              "name": "20070124 [CAID 34993]: CA BrightStor ARCserve Backup for Laptops and Desktops Multiple Overflow Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/457945/30/8460/threaded"
            },
            {
              "name": "22199",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22199"
            },
            {
              "name": "22342",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22342"
            },
            {
              "name": "ADV-2007-0314",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/0314"
            },
            {
              "name": "VU#357308",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/357308"
            },
            {
              "name": "1017548",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017548"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-0449",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "22340",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22340"
                },
                {
                  "name": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97696",
                  "refsource": "CONFIRM",
                  "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97696"
                },
                {
                  "name": "31593",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/31593"
                },
                {
                  "name": "VU#611276",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/611276"
                },
                {
                  "name": "20070131 Remote Unauthenticated Code Execution II CA BrightStor ARCserve Backup for Laptops \u0026 Desktops",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/458648/100/0/threaded"
                },
                {
                  "name": "23897",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/23897"
                },
                {
                  "name": "20070131 Remote Unauthenticated Code Execution CA BrightStor ARCserve Backup",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/458644/100/0/threaded"
                },
                {
                  "name": "http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993",
                  "refsource": "CONFIRM",
                  "url": "http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993"
                },
                {
                  "name": "ca-multiple-unspecified-bo(31704)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31704"
                },
                {
                  "name": "20070124 [CAID 34993]: CA BrightStor ARCserve Backup for Laptops and Desktops Multiple Overflow Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/457945/30/8460/threaded"
                },
                {
                  "name": "22199",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22199"
                },
                {
                  "name": "22342",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22342"
                },
                {
                  "name": "ADV-2007-0314",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/0314"
                },
                {
                  "name": "VU#357308",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/357308"
                },
                {
                  "name": "1017548",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017548"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-0449",
        "datePublished": "2007-01-23T21:00:00.000Z",
        "dateReserved": "2007-01-23T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:19:30.097Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0307 (GCVE-0-2006-0307)

    Vulnerability from nvd – Published: 2006-01-19 00:00 – Updated: 2024-08-07 16:34
    VLAI
    Summary
    The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption and log file consumption) via unspecified "unrecognized network messages" that are not properly handled.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/22529 vdb-entryx_refsource_OSVDB
    http://www.securityfocus.com/archive/1/422381/100… mailing-listx_refsource_BUGTRAQ
    http://www.vupen.com/english/advisories/2006/0236 vdb-entryx_refsource_VUPEN
    http://www3.ca.com/securityadvisor/vulninfo/vuln.… x_refsource_CONFIRM
    http://secunia.com/advisories/18531 third-party-advisoryx_refsource_SECUNIA
    http://supportconnectw.ca.com/public/ca_common_do… x_refsource_CONFIRM
    http://www.securityfocus.com/bid/16276 vdb-entryx_refsource_BID
    http://securitytracker.com/id?1015504 vdb-entryx_refsource_SECTRACK
    Date Public
    2006-01-17 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:34:13.590Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "22529",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22529"
              },
              {
                "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
              },
              {
                "name": "ADV-2006-0236",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0236"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
              },
              {
                "name": "18531",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18531"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
              },
              {
                "name": "16276",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16276"
              },
              {
                "name": "1015504",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015504"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-01-17T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption and log file consumption) via unspecified \"unrecognized network messages\" that are not properly handled."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "22529",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22529"
            },
            {
              "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
            },
            {
              "name": "ADV-2006-0236",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0236"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
            },
            {
              "name": "18531",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18531"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
            },
            {
              "name": "16276",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16276"
            },
            {
              "name": "1015504",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015504"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-0307",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption and log file consumption) via unspecified \"unrecognized network messages\" that are not properly handled."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "22529",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22529"
                },
                {
                  "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
                },
                {
                  "name": "ADV-2006-0236",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0236"
                },
                {
                  "name": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756",
                  "refsource": "CONFIRM",
                  "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
                },
                {
                  "name": "18531",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18531"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
                },
                {
                  "name": "16276",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16276"
                },
                {
                  "name": "1015504",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015504"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-0307",
        "datePublished": "2006-01-19T00:00:00.000Z",
        "dateReserved": "2006-01-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:34:13.590Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0306 (GCVE-0-2006-0306)

    Vulnerability from nvd – Published: 2006-01-19 00:00 – Updated: 2024-08-07 16:34
    VLAI
    Summary
    The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not handled, leading to a thread exit.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2006-01-17 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:34:13.228Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "22529",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22529"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.designfolks.com.au/karma/DMPrimer/"
              },
              {
                "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
              },
              {
                "name": "ADV-2006-0236",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0236"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
              },
              {
                "name": "18531",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18531"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
              },
              {
                "name": "16276",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16276"
              },
              {
                "name": "1015504",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015504"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-01-17T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not handled, leading to a thread exit."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "22529",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22529"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.designfolks.com.au/karma/DMPrimer/"
            },
            {
              "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
            },
            {
              "name": "ADV-2006-0236",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0236"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
            },
            {
              "name": "18531",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18531"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
            },
            {
              "name": "16276",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16276"
            },
            {
              "name": "1015504",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015504"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-0306",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not handled, leading to a thread exit."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "22529",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22529"
                },
                {
                  "name": "http://www.designfolks.com.au/karma/DMPrimer/",
                  "refsource": "MISC",
                  "url": "http://www.designfolks.com.au/karma/DMPrimer/"
                },
                {
                  "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
                },
                {
                  "name": "ADV-2006-0236",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0236"
                },
                {
                  "name": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756",
                  "refsource": "CONFIRM",
                  "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
                },
                {
                  "name": "18531",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18531"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
                },
                {
                  "name": "16276",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16276"
                },
                {
                  "name": "1015504",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015504"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-0306",
        "datePublished": "2006-01-19T00:00:00.000Z",
        "dateReserved": "2006-01-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:34:13.228Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2005-3653 (GCVE-0-2005-3653)

    Vulnerability from nvd – Published: 2006-01-23 20:00 – Updated: 2024-08-07 23:17
    VLAI
    Summary
    Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://securitytracker.com/id?1015526 vdb-entryx_refsource_SECTRACK
    http://marc.info/?l=full-disclosure&m=11380334971… mailing-listx_refsource_FULLDISC
    http://www.osvdb.org/22688 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/18591 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/bid/16354 vdb-entryx_refsource_BID
    http://www3.ca.com/securityadvisor/vulninfo/vuln.… x_refsource_CONFIRM
    http://securityreason.com/securityalert/380 third-party-advisoryx_refsource_SREASON
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2006/0311 vdb-entryx_refsource_VUPEN
    http://www.securityfocus.com/archive/1/423288/100… mailing-listx_refsource_BUGTRAQ
    http://www.idefense.com/intelligence/vulnerabilit… third-party-advisoryx_refsource_IDEFENSE
    http://www.securityfocus.com/archive/1/423403/100… mailing-listx_refsource_BUGTRAQ
    http://supportconnectw.ca.com/public/ca_common_do… x_refsource_CONFIRM
    Date Public
    2006-01-23 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T23:17:23.637Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1015526",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015526"
              },
              {
                "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=full-disclosure\u0026m=113803349715927\u0026w=2"
              },
              {
                "name": "22688",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22688"
              },
              {
                "name": "18591",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18591"
              },
              {
                "name": "16354",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16354"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778"
              },
              {
                "name": "380",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/380"
              },
              {
                "name": "ca-igateway-contentlength-bo(24269)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24269"
              },
              {
                "name": "ADV-2006-0311",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0311"
              },
              {
                "name": "20060127 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability [v1.1]",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/423288/100/0/threaded"
              },
              {
                "name": "20060123 Computer Associates iTechnology iGateway Service Content-Length Buffer Overflow",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376"
              },
              {
                "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/423403/100/0/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-01-23T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1015526",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015526"
            },
            {
              "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://marc.info/?l=full-disclosure\u0026m=113803349715927\u0026w=2"
            },
            {
              "name": "22688",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22688"
            },
            {
              "name": "18591",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18591"
            },
            {
              "name": "16354",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16354"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778"
            },
            {
              "name": "380",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/380"
            },
            {
              "name": "ca-igateway-contentlength-bo(24269)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24269"
            },
            {
              "name": "ADV-2006-0311",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0311"
            },
            {
              "name": "20060127 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability [v1.1]",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/423288/100/0/threaded"
            },
            {
              "name": "20060123 Computer Associates iTechnology iGateway Service Content-Length Buffer Overflow",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376"
            },
            {
              "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/423403/100/0/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2005-3653",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1015526",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015526"
                },
                {
                  "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
                  "refsource": "FULLDISC",
                  "url": "http://marc.info/?l=full-disclosure\u0026m=113803349715927\u0026w=2"
                },
                {
                  "name": "22688",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22688"
                },
                {
                  "name": "18591",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18591"
                },
                {
                  "name": "16354",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16354"
                },
                {
                  "name": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778",
                  "refsource": "CONFIRM",
                  "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778"
                },
                {
                  "name": "380",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/380"
                },
                {
                  "name": "ca-igateway-contentlength-bo(24269)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24269"
                },
                {
                  "name": "ADV-2006-0311",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0311"
                },
                {
                  "name": "20060127 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability [v1.1]",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/423288/100/0/threaded"
                },
                {
                  "name": "20060123 Computer Associates iTechnology iGateway Service Content-Length Buffer Overflow",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376"
                },
                {
                  "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/423403/100/0/threaded"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2005-3653",
        "datePublished": "2006-01-23T20:00:00.000Z",
        "dateReserved": "2005-11-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T23:17:23.637Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-5005 (GCVE-0-2007-5005)

    Vulnerability from cvelistv5 – Published: 2007-10-01 20:00 – Updated: 2024-08-07 15:17
    VLAI
    Summary
    Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to upload and overwrite arbitrary files via a ..\ (dot dot backslash) sequence in the destination filename argument to sub-function 8 in the rxrReceiveFileFromServer command.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2007-09-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T15:17:27.860Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "24348",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24348"
              },
              {
                "name": "25606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25606"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35676"
              },
              {
                "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
              },
              {
                "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_EEYE",
                  "x_transferred"
                ],
                "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
              },
              {
                "name": "1018728",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018728"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-09-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to upload and overwrite arbitrary files via a ..\\ (dot dot backslash) sequence in the destination filename argument to sub-function 8 in the rxrReceiveFileFromServer command."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-15T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "24348",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24348"
            },
            {
              "name": "25606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25606"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35676"
            },
            {
              "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
            },
            {
              "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
              "tags": [
                "third-party-advisory",
                "x_refsource_EEYE"
              ],
              "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
            },
            {
              "name": "1018728",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018728"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-5005",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to upload and overwrite arbitrary files via a ..\\ (dot dot backslash) sequence in the destination filename argument to sub-function 8 in the rxrReceiveFileFromServer command."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "24348",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24348"
                },
                {
                  "name": "25606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25606"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35676",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35676"
                },
                {
                  "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
                },
                {
                  "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                  "refsource": "EEYE",
                  "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
                },
                {
                  "name": "1018728",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018728"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-5005",
        "datePublished": "2007-10-01T20:00:00.000Z",
        "dateReserved": "2007-09-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T15:17:27.860Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-5006 (GCVE-0-2007-5006)

    Vulnerability from cvelistv5 – Published: 2007-10-01 20:00 – Updated: 2024-08-07 15:17
    VLAI
    Summary
    Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 do not verify if a peer is authenticated, which allows remote attackers to add and delete users, and start client restores.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2007-09-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T15:17:27.899Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20070920 CA ARCserve Backup for Laptops and Desktops Authentication Bypass Vulnerability",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=598"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35677"
              },
              {
                "name": "24348",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24348"
              },
              {
                "name": "25606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25606"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
              },
              {
                "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
              },
              {
                "name": "1018728",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018728"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-09-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 do not verify if a peer is authenticated, which allows remote attackers to add and delete users, and start client restores."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-15T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20070920 CA ARCserve Backup for Laptops and Desktops Authentication Bypass Vulnerability",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=598"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35677"
            },
            {
              "name": "24348",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24348"
            },
            {
              "name": "25606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25606"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
            },
            {
              "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
            },
            {
              "name": "1018728",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018728"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-5006",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 do not verify if a peer is authenticated, which allows remote attackers to add and delete users, and start client restores."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20070920 CA ARCserve Backup for Laptops and Desktops Authentication Bypass Vulnerability",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=598"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35677",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35677"
                },
                {
                  "name": "24348",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24348"
                },
                {
                  "name": "25606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25606"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
                },
                {
                  "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
                },
                {
                  "name": "1018728",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018728"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-5006",
        "datePublished": "2007-10-01T20:00:00.000Z",
        "dateReserved": "2007-09-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T15:17:27.899Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-5004 (GCVE-0-2007-5004)

    Vulnerability from cvelistv5 – Published: 2007-10-01 20:00 – Updated: 2024-08-07 15:17
    VLAI
    Summary
    Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to execute arbitrary code via a long username and a certain "useless" password.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2007-09-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T15:17:27.831Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "24348",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24348"
              },
              {
                "name": "25606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25606"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
              },
              {
                "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35675"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
              },
              {
                "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_EEYE",
                  "x_transferred"
                ],
                "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
              },
              {
                "name": "1018728",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018728"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-09-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to execute arbitrary code via a long username and a certain \"useless\" password."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-15T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "24348",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24348"
            },
            {
              "name": "25606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25606"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
            },
            {
              "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35675"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
            },
            {
              "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
              "tags": [
                "third-party-advisory",
                "x_refsource_EEYE"
              ],
              "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
            },
            {
              "name": "1018728",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018728"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-5004",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to execute arbitrary code via a long username and a certain \"useless\" password."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "24348",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24348"
                },
                {
                  "name": "25606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25606"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
                },
                {
                  "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35675",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35675"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
                },
                {
                  "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                  "refsource": "EEYE",
                  "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
                },
                {
                  "name": "1018728",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018728"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-5004",
        "datePublished": "2007-10-01T20:00:00.000Z",
        "dateReserved": "2007-09-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T15:17:27.831Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-5003 (GCVE-0-2007-5003)

    Vulnerability from cvelistv5 – Published: 2007-10-01 20:00 – Updated: 2024-08-07 15:17
    VLAI
    Summary
    Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/24348 vdb-entryx_refsource_BID
    http://www.ca.com/us/securityadvisor/vulninfo/vul… x_refsource_CONFIRM
    http://secunia.com/advisories/25606 third-party-advisoryx_refsource_SECUNIA
    http://labs.idefense.com/intelligence/vulnerabili… third-party-advisoryx_refsource_IDEFENSE
    http://www.ca.com/us/securityadvisor/newsinfo/col… x_refsource_CONFIRM
    http://www.securityfocus.com/archive/1/480252/100… mailing-listx_refsource_BUGTRAQ
    http://supportconnectw.ca.com/public/sams/lifegua… x_refsource_CONFIRM
    http://research.eeye.com/html/advisories/publishe… third-party-advisoryx_refsource_EEYE
    http://www.securitytracker.com/id?1018728 vdb-entryx_refsource_SECTRACK
    Date Public
    2007-09-21 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T15:17:28.199Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "24348",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24348"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35674"
              },
              {
                "name": "25606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25606"
              },
              {
                "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
              },
              {
                "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
              },
              {
                "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_EEYE",
                  "x_transferred"
                ],
                "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
              },
              {
                "name": "1018728",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018728"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-09-21T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-15T20:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "24348",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24348"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35674"
            },
            {
              "name": "25606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25606"
            },
            {
              "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
            },
            {
              "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
            },
            {
              "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
              "tags": [
                "third-party-advisory",
                "x_refsource_EEYE"
              ],
              "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
            },
            {
              "name": "1018728",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018728"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-5003",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "24348",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24348"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35674",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35674"
                },
                {
                  "name": "25606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25606"
                },
                {
                  "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
                },
                {
                  "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
                },
                {
                  "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                  "refsource": "EEYE",
                  "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
                },
                {
                  "name": "1018728",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018728"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-5003",
        "datePublished": "2007-10-01T20:00:00.000Z",
        "dateReserved": "2007-09-20T00:00:00.000Z",
        "dateUpdated": "2024-08-07T15:17:28.199Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-3216 (GCVE-0-2007-3216)

    Vulnerability from cvelistv5 – Published: 2007-06-14 22:00 – Updated: 2024-08-07 14:05
    VLAI
    Summary
    Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via crafted arguments to the (1) rxsAddNewUser, (2) rxsSetUserInfo, (3) rxsRenameUser, (4) rxsSetMessageLogSettings, (5) rxsExportData, (6) rxsSetServerOptions, (7) rxsRenameFile, (8) rxsACIManageSend, (9) rxsExportUser, (10) rxsImportUser, (11) rxsMoveUserData, (12) rxsUseLicenseIni, (13) rxsLicGetSiteId, (14) rxsGetLogFileNames, (15) rxsGetBackupLog, (16) rxsBackupComplete, (17) rxsSetDataProtectionSecurityData, (18) rxsSetDefaultConfigName, (19) rxsGetMessageLogSettings, (20) rxsHWDiskGetTotal, (21) rxsHWDiskGetFree, (22) rxsGetSubDirs, (23) rxsGetServerDBPathName, (24) rxsSetServerOptions, (25) rxsDeleteFile, (26) rxsACIManageSend, (27) rxcReadBackupSetList, (28) rxcWriteConfigInfo, (29) rxcSetAssetManagement, (30) rxcWriteFileListForRestore, (31) rxcReadSaveSetProfile, (32) rxcInitSaveSetProfile, (33) rxcAddSaveSetNextAppList, (34) rxcAddSaveSetNextFilesPathList, (35) rxcAddNextBackupSetIncWildCard, (36) rxcGetRevisions, (37) rxrAddMovedUser, (38) rxrSetClientVersion, or (39) rxsSetDataGrowthScheduleAndFilter commands.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    Date Public
    2007-06-11 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T14:05:29.275Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "24348",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/24348"
              },
              {
                "name": "brightstor-unspecified-code-execution(34805)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34805"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/bsabld-securitynotice.asp"
              },
              {
                "name": "25606",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/25606"
              },
              {
                "name": "1018216",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018216"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35673"
              },
              {
                "name": "35329",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/35329"
              },
              {
                "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
              },
              {
                "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
              },
              {
                "name": "ADV-2007-2121",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/2121"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
              },
              {
                "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_EEYE",
                  "x_transferred"
                ],
                "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
              },
              {
                "name": "1018728",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://www.securitytracker.com/id?1018728"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://research.eeye.com/html/advisories/upcoming/20070604.html"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-06-11T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via crafted arguments to the (1) rxsAddNewUser, (2) rxsSetUserInfo, (3) rxsRenameUser, (4) rxsSetMessageLogSettings, (5) rxsExportData, (6) rxsSetServerOptions, (7) rxsRenameFile, (8) rxsACIManageSend, (9) rxsExportUser, (10) rxsImportUser, (11) rxsMoveUserData, (12) rxsUseLicenseIni, (13) rxsLicGetSiteId, (14) rxsGetLogFileNames, (15) rxsGetBackupLog, (16) rxsBackupComplete, (17) rxsSetDataProtectionSecurityData, (18) rxsSetDefaultConfigName, (19) rxsGetMessageLogSettings, (20) rxsHWDiskGetTotal, (21) rxsHWDiskGetFree, (22) rxsGetSubDirs, (23) rxsGetServerDBPathName, (24) rxsSetServerOptions, (25) rxsDeleteFile, (26) rxsACIManageSend, (27) rxcReadBackupSetList, (28) rxcWriteConfigInfo, (29) rxcSetAssetManagement, (30) rxcWriteFileListForRestore, (31) rxcReadSaveSetProfile, (32) rxcInitSaveSetProfile, (33) rxcAddSaveSetNextAppList, (34) rxcAddSaveSetNextFilesPathList, (35) rxcAddNextBackupSetIncWildCard, (36) rxcGetRevisions, (37) rxrAddMovedUser, (38) rxrSetClientVersion, or (39) rxsSetDataGrowthScheduleAndFilter commands."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "24348",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/24348"
            },
            {
              "name": "brightstor-unspecified-code-execution(34805)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34805"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/bsabld-securitynotice.asp"
            },
            {
              "name": "25606",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/25606"
            },
            {
              "name": "1018216",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018216"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35673"
            },
            {
              "name": "35329",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/35329"
            },
            {
              "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
            },
            {
              "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
            },
            {
              "name": "ADV-2007-2121",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/2121"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
            },
            {
              "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
              "tags": [
                "third-party-advisory",
                "x_refsource_EEYE"
              ],
              "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
            },
            {
              "name": "1018728",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://www.securitytracker.com/id?1018728"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://research.eeye.com/html/advisories/upcoming/20070604.html"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-3216",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via crafted arguments to the (1) rxsAddNewUser, (2) rxsSetUserInfo, (3) rxsRenameUser, (4) rxsSetMessageLogSettings, (5) rxsExportData, (6) rxsSetServerOptions, (7) rxsRenameFile, (8) rxsACIManageSend, (9) rxsExportUser, (10) rxsImportUser, (11) rxsMoveUserData, (12) rxsUseLicenseIni, (13) rxsLicGetSiteId, (14) rxsGetLogFileNames, (15) rxsGetBackupLog, (16) rxsBackupComplete, (17) rxsSetDataProtectionSecurityData, (18) rxsSetDefaultConfigName, (19) rxsGetMessageLogSettings, (20) rxsHWDiskGetTotal, (21) rxsHWDiskGetFree, (22) rxsGetSubDirs, (23) rxsGetServerDBPathName, (24) rxsSetServerOptions, (25) rxsDeleteFile, (26) rxsACIManageSend, (27) rxcReadBackupSetList, (28) rxcWriteConfigInfo, (29) rxcSetAssetManagement, (30) rxcWriteFileListForRestore, (31) rxcReadSaveSetProfile, (32) rxcInitSaveSetProfile, (33) rxcAddSaveSetNextAppList, (34) rxcAddSaveSetNextFilesPathList, (35) rxcAddNextBackupSetIncWildCard, (36) rxcGetRevisions, (37) rxrAddMovedUser, (38) rxrSetClientVersion, or (39) rxsSetDataGrowthScheduleAndFilter commands."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "24348",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/24348"
                },
                {
                  "name": "brightstor-unspecified-code-execution(34805)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/34805"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/bsabld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/bsabld-securitynotice.asp"
                },
                {
                  "name": "25606",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/25606"
                },
                {
                  "name": "1018216",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018216"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35673",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35673"
                },
                {
                  "name": "35329",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/35329"
                },
                {
                  "name": "20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities",
                  "refsource": "IDEFENSE",
                  "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599"
                },
                {
                  "name": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006",
                  "refsource": "CONFIRM",
                  "url": "http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006"
                },
                {
                  "name": "20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/480252/100/100/threaded"
                },
                {
                  "name": "ADV-2007-2121",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/2121"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp"
                },
                {
                  "name": "20070920 Multiple Vulnerabilities in CA ARCserve for Laptops \u0026 Desktops",
                  "refsource": "EEYE",
                  "url": "http://research.eeye.com/html/advisories/published/AD20070920.html"
                },
                {
                  "name": "1018728",
                  "refsource": "SECTRACK",
                  "url": "http://www.securitytracker.com/id?1018728"
                },
                {
                  "name": "http://research.eeye.com/html/advisories/upcoming/20070604.html",
                  "refsource": "MISC",
                  "url": "http://research.eeye.com/html/advisories/upcoming/20070604.html"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-3216",
        "datePublished": "2007-06-14T22:00:00.000Z",
        "dateReserved": "2007-06-14T00:00:00.000Z",
        "dateUpdated": "2024-08-07T14:05:29.275Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-0673 (GCVE-0-2007-0673)

    Vulnerability from cvelistv5 – Published: 2007-02-03 01:00 – Updated: 2024-08-07 12:26
    VLAI
    Summary
    LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/archive/1/458650/100… mailing-listx_refsource_BUGTRAQ
    http://www.securityfocus.com/bid/22337 vdb-entryx_refsource_BID
    http://osvdb.org/32948 vdb-entryx_refsource_OSVDB
    http://securityreason.com/securityalert/2218 third-party-advisoryx_refsource_SREASON
    http://supportconnectw.ca.com/public/sams/lifegua… x_refsource_CONFIRM
    Date Public
    2007-01-31 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:26:54.281Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20070131 Remote DOS BrightStor ARCserve Backup for Laptops \u0026 Desktops",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/458650/100/0/threaded"
              },
              {
                "name": "22337",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22337"
              },
              {
                "name": "32948",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://osvdb.org/32948"
              },
              {
                "name": "2218",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/2218"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-01-31T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "LGSERVER.EXE in BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20070131 Remote DOS BrightStor ARCserve Backup for Laptops \u0026 Desktops",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/458650/100/0/threaded"
            },
            {
              "name": "22337",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22337"
            },
            {
              "name": "32948",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://osvdb.org/32948"
            },
            {
              "name": "2218",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/2218"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-0673",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "LGSERVER.EXE in BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20070131 Remote DOS BrightStor ARCserve Backup for Laptops \u0026 Desktops",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/458650/100/0/threaded"
                },
                {
                  "name": "22337",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22337"
                },
                {
                  "name": "32948",
                  "refsource": "OSVDB",
                  "url": "http://osvdb.org/32948"
                },
                {
                  "name": "2218",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/2218"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-0673",
        "datePublished": "2007-02-03T01:00:00.000Z",
        "dateReserved": "2007-02-02T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:26:54.281Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-0672 (GCVE-0-2007-0672)

    Vulnerability from cvelistv5 – Published: 2007-02-03 01:00 – Updated: 2024-08-07 12:26
    VLAI
    Summary
    LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\Server\data\transfer\.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2007-01-31 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:26:54.307Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "20070131 Remote Unauthenticated Resource Exhaustion CA Mobile BackupService",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/458653/100/0/threaded"
              },
              {
                "name": "22339",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22339"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-01-31T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\\Server\\data\\transfer\\."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "20070131 Remote Unauthenticated Resource Exhaustion CA Mobile BackupService",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/458653/100/0/threaded"
            },
            {
              "name": "22339",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22339"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-0672",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\\Server\\data\\transfer\\."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "20070131 Remote Unauthenticated Resource Exhaustion CA Mobile BackupService",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/458653/100/0/threaded"
                },
                {
                  "name": "22339",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22339"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-0672",
        "datePublished": "2007-02-03T01:00:00.000Z",
        "dateReserved": "2007-02-02T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:26:54.307Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2007-0449 (GCVE-0-2007-0449)

    Vulnerability from cvelistv5 – Published: 2007-01-23 21:00 – Updated: 2024-08-07 12:19
    VLAI
    Summary
    Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.securityfocus.com/bid/22340 vdb-entryx_refsource_BID
    http://www3.ca.com/securityadvisor/newsinfo/colla… x_refsource_CONFIRM
    http://www.osvdb.org/31593 vdb-entryx_refsource_OSVDB
    http://www.kb.cert.org/vuls/id/611276 third-party-advisoryx_refsource_CERT-VN
    http://www.securityfocus.com/archive/1/458648/100… mailing-listx_refsource_BUGTRAQ
    http://secunia.com/advisories/23897 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/archive/1/458644/100… mailing-listx_refsource_BUGTRAQ
    http://www3.ca.com/securityadvisor/vulninfo/Vuln.… x_refsource_CONFIRM
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.securityfocus.com/archive/1/457945/30/… mailing-listx_refsource_BUGTRAQ
    http://www.securityfocus.com/bid/22199 vdb-entryx_refsource_BID
    http://www.securityfocus.com/bid/22342 vdb-entryx_refsource_BID
    http://www.vupen.com/english/advisories/2007/0314 vdb-entryx_refsource_VUPEN
    http://www.kb.cert.org/vuls/id/357308 third-party-advisoryx_refsource_CERT-VN
    http://securitytracker.com/id?1017548 vdb-entryx_refsource_SECTRACK
    http://supportconnectw.ca.com/public/sams/lifegua… x_refsource_CONFIRM
    Date Public
    2007-01-23 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T12:19:30.097Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "22340",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22340"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97696"
              },
              {
                "name": "31593",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/31593"
              },
              {
                "name": "VU#611276",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/611276"
              },
              {
                "name": "20070131 Remote Unauthenticated Code Execution II CA BrightStor ARCserve Backup for Laptops \u0026 Desktops",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/458648/100/0/threaded"
              },
              {
                "name": "23897",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/23897"
              },
              {
                "name": "20070131 Remote Unauthenticated Code Execution CA BrightStor ARCserve Backup",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/458644/100/0/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993"
              },
              {
                "name": "ca-multiple-unspecified-bo(31704)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31704"
              },
              {
                "name": "20070124 [CAID 34993]: CA BrightStor ARCserve Backup for Laptops and Desktops Multiple Overflow Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/457945/30/8460/threaded"
              },
              {
                "name": "22199",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22199"
              },
              {
                "name": "22342",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/22342"
              },
              {
                "name": "ADV-2007-0314",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2007/0314"
              },
              {
                "name": "VU#357308",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_CERT-VN",
                  "x_transferred"
                ],
                "url": "http://www.kb.cert.org/vuls/id/357308"
              },
              {
                "name": "1017548",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1017548"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2007-01-23T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-16T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "22340",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22340"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97696"
            },
            {
              "name": "31593",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/31593"
            },
            {
              "name": "VU#611276",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/611276"
            },
            {
              "name": "20070131 Remote Unauthenticated Code Execution II CA BrightStor ARCserve Backup for Laptops \u0026 Desktops",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/458648/100/0/threaded"
            },
            {
              "name": "23897",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/23897"
            },
            {
              "name": "20070131 Remote Unauthenticated Code Execution CA BrightStor ARCserve Backup",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/458644/100/0/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993"
            },
            {
              "name": "ca-multiple-unspecified-bo(31704)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31704"
            },
            {
              "name": "20070124 [CAID 34993]: CA BrightStor ARCserve Backup for Laptops and Desktops Multiple Overflow Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/457945/30/8460/threaded"
            },
            {
              "name": "22199",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22199"
            },
            {
              "name": "22342",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/22342"
            },
            {
              "name": "ADV-2007-0314",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2007/0314"
            },
            {
              "name": "VU#357308",
              "tags": [
                "third-party-advisory",
                "x_refsource_CERT-VN"
              ],
              "url": "http://www.kb.cert.org/vuls/id/357308"
            },
            {
              "name": "1017548",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1017548"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2007-0449",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "22340",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22340"
                },
                {
                  "name": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97696",
                  "refsource": "CONFIRM",
                  "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97696"
                },
                {
                  "name": "31593",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/31593"
                },
                {
                  "name": "VU#611276",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/611276"
                },
                {
                  "name": "20070131 Remote Unauthenticated Code Execution II CA BrightStor ARCserve Backup for Laptops \u0026 Desktops",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/458648/100/0/threaded"
                },
                {
                  "name": "23897",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/23897"
                },
                {
                  "name": "20070131 Remote Unauthenticated Code Execution CA BrightStor ARCserve Backup",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/458644/100/0/threaded"
                },
                {
                  "name": "http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993",
                  "refsource": "CONFIRM",
                  "url": "http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993"
                },
                {
                  "name": "ca-multiple-unspecified-bo(31704)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/31704"
                },
                {
                  "name": "20070124 [CAID 34993]: CA BrightStor ARCserve Backup for Laptops and Desktops Multiple Overflow Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/457945/30/8460/threaded"
                },
                {
                  "name": "22199",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22199"
                },
                {
                  "name": "22342",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/22342"
                },
                {
                  "name": "ADV-2007-0314",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2007/0314"
                },
                {
                  "name": "VU#357308",
                  "refsource": "CERT-VN",
                  "url": "http://www.kb.cert.org/vuls/id/357308"
                },
                {
                  "name": "1017548",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1017548"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2007-0449",
        "datePublished": "2007-01-23T21:00:00.000Z",
        "dateReserved": "2007-01-23T00:00:00.000Z",
        "dateUpdated": "2024-08-07T12:19:30.097Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2005-3653 (GCVE-0-2005-3653)

    Vulnerability from cvelistv5 – Published: 2006-01-23 20:00 – Updated: 2024-08-07 23:17
    VLAI
    Summary
    Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://securitytracker.com/id?1015526 vdb-entryx_refsource_SECTRACK
    http://marc.info/?l=full-disclosure&m=11380334971… mailing-listx_refsource_FULLDISC
    http://www.osvdb.org/22688 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/18591 third-party-advisoryx_refsource_SECUNIA
    http://www.securityfocus.com/bid/16354 vdb-entryx_refsource_BID
    http://www3.ca.com/securityadvisor/vulninfo/vuln.… x_refsource_CONFIRM
    http://securityreason.com/securityalert/380 third-party-advisoryx_refsource_SREASON
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.vupen.com/english/advisories/2006/0311 vdb-entryx_refsource_VUPEN
    http://www.securityfocus.com/archive/1/423288/100… mailing-listx_refsource_BUGTRAQ
    http://www.idefense.com/intelligence/vulnerabilit… third-party-advisoryx_refsource_IDEFENSE
    http://www.securityfocus.com/archive/1/423403/100… mailing-listx_refsource_BUGTRAQ
    http://supportconnectw.ca.com/public/ca_common_do… x_refsource_CONFIRM
    Date Public
    2006-01-23 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T23:17:23.637Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1015526",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015526"
              },
              {
                "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
                "tags": [
                  "mailing-list",
                  "x_refsource_FULLDISC",
                  "x_transferred"
                ],
                "url": "http://marc.info/?l=full-disclosure\u0026m=113803349715927\u0026w=2"
              },
              {
                "name": "22688",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22688"
              },
              {
                "name": "18591",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18591"
              },
              {
                "name": "16354",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16354"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778"
              },
              {
                "name": "380",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SREASON",
                  "x_transferred"
                ],
                "url": "http://securityreason.com/securityalert/380"
              },
              {
                "name": "ca-igateway-contentlength-bo(24269)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24269"
              },
              {
                "name": "ADV-2006-0311",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0311"
              },
              {
                "name": "20060127 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability [v1.1]",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/423288/100/0/threaded"
              },
              {
                "name": "20060123 Computer Associates iTechnology iGateway Service Content-Length Buffer Overflow",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_IDEFENSE",
                  "x_transferred"
                ],
                "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376"
              },
              {
                "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/423403/100/0/threaded"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-01-23T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1015526",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015526"
            },
            {
              "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
              "tags": [
                "mailing-list",
                "x_refsource_FULLDISC"
              ],
              "url": "http://marc.info/?l=full-disclosure\u0026m=113803349715927\u0026w=2"
            },
            {
              "name": "22688",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22688"
            },
            {
              "name": "18591",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18591"
            },
            {
              "name": "16354",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16354"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778"
            },
            {
              "name": "380",
              "tags": [
                "third-party-advisory",
                "x_refsource_SREASON"
              ],
              "url": "http://securityreason.com/securityalert/380"
            },
            {
              "name": "ca-igateway-contentlength-bo(24269)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24269"
            },
            {
              "name": "ADV-2006-0311",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0311"
            },
            {
              "name": "20060127 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability [v1.1]",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/423288/100/0/threaded"
            },
            {
              "name": "20060123 Computer Associates iTechnology iGateway Service Content-Length Buffer Overflow",
              "tags": [
                "third-party-advisory",
                "x_refsource_IDEFENSE"
              ],
              "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376"
            },
            {
              "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/423403/100/0/threaded"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2005-3653",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1015526",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015526"
                },
                {
                  "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
                  "refsource": "FULLDISC",
                  "url": "http://marc.info/?l=full-disclosure\u0026m=113803349715927\u0026w=2"
                },
                {
                  "name": "22688",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22688"
                },
                {
                  "name": "18591",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18591"
                },
                {
                  "name": "16354",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16354"
                },
                {
                  "name": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778",
                  "refsource": "CONFIRM",
                  "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778"
                },
                {
                  "name": "380",
                  "refsource": "SREASON",
                  "url": "http://securityreason.com/securityalert/380"
                },
                {
                  "name": "ca-igateway-contentlength-bo(24269)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24269"
                },
                {
                  "name": "ADV-2006-0311",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0311"
                },
                {
                  "name": "20060127 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability [v1.1]",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/423288/100/0/threaded"
                },
                {
                  "name": "20060123 Computer Associates iTechnology iGateway Service Content-Length Buffer Overflow",
                  "refsource": "IDEFENSE",
                  "url": "http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376"
                },
                {
                  "name": "20060123 CAID 33778 - CA iGateway Content-Length Buffer Overflow Vulnerability",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/423403/100/0/threaded"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2005-3653",
        "datePublished": "2006-01-23T20:00:00.000Z",
        "dateReserved": "2005-11-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T23:17:23.637Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0307 (GCVE-0-2006-0307)

    Vulnerability from cvelistv5 – Published: 2006-01-19 00:00 – Updated: 2024-08-07 16:34
    VLAI
    Summary
    The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption and log file consumption) via unspecified "unrecognized network messages" that are not properly handled.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/22529 vdb-entryx_refsource_OSVDB
    http://www.securityfocus.com/archive/1/422381/100… mailing-listx_refsource_BUGTRAQ
    http://www.vupen.com/english/advisories/2006/0236 vdb-entryx_refsource_VUPEN
    http://www3.ca.com/securityadvisor/vulninfo/vuln.… x_refsource_CONFIRM
    http://secunia.com/advisories/18531 third-party-advisoryx_refsource_SECUNIA
    http://supportconnectw.ca.com/public/ca_common_do… x_refsource_CONFIRM
    http://www.securityfocus.com/bid/16276 vdb-entryx_refsource_BID
    http://securitytracker.com/id?1015504 vdb-entryx_refsource_SECTRACK
    Date Public
    2006-01-17 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:34:13.590Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "22529",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22529"
              },
              {
                "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
              },
              {
                "name": "ADV-2006-0236",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0236"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
              },
              {
                "name": "18531",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18531"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
              },
              {
                "name": "16276",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16276"
              },
              {
                "name": "1015504",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015504"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-01-17T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption and log file consumption) via unspecified \"unrecognized network messages\" that are not properly handled."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "22529",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22529"
            },
            {
              "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
            },
            {
              "name": "ADV-2006-0236",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0236"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
            },
            {
              "name": "18531",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18531"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
            },
            {
              "name": "16276",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16276"
            },
            {
              "name": "1015504",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015504"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-0307",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption and log file consumption) via unspecified \"unrecognized network messages\" that are not properly handled."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "22529",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22529"
                },
                {
                  "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
                },
                {
                  "name": "ADV-2006-0236",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0236"
                },
                {
                  "name": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756",
                  "refsource": "CONFIRM",
                  "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
                },
                {
                  "name": "18531",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18531"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
                },
                {
                  "name": "16276",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16276"
                },
                {
                  "name": "1015504",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015504"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-0307",
        "datePublished": "2006-01-19T00:00:00.000Z",
        "dateReserved": "2006-01-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:34:13.590Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2006-0306 (GCVE-0-2006-0306)

    Vulnerability from cvelistv5 – Published: 2006-01-19 00:00 – Updated: 2024-08-07 16:34
    VLAI
    Summary
    The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not handled, leading to a thread exit.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    Date Public
    2006-01-17 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-07T16:34:13.228Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "22529",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/22529"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.designfolks.com.au/karma/DMPrimer/"
              },
              {
                "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
                "tags": [
                  "mailing-list",
                  "x_refsource_BUGTRAQ",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
              },
              {
                "name": "ADV-2006-0236",
                "tags": [
                  "vdb-entry",
                  "x_refsource_VUPEN",
                  "x_transferred"
                ],
                "url": "http://www.vupen.com/english/advisories/2006/0236"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
              },
              {
                "name": "18531",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/18531"
              },
              {
                "tags": [
                  "x_refsource_CONFIRM",
                  "x_transferred"
                ],
                "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
              },
              {
                "name": "16276",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/16276"
              },
              {
                "name": "1015504",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1015504"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2006-01-17T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not handled, leading to a thread exit."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2018-10-19T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "22529",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/22529"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.designfolks.com.au/karma/DMPrimer/"
            },
            {
              "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
              "tags": [
                "mailing-list",
                "x_refsource_BUGTRAQ"
              ],
              "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
            },
            {
              "name": "ADV-2006-0236",
              "tags": [
                "vdb-entry",
                "x_refsource_VUPEN"
              ],
              "url": "http://www.vupen.com/english/advisories/2006/0236"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
            },
            {
              "name": "18531",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/18531"
            },
            {
              "tags": [
                "x_refsource_CONFIRM"
              ],
              "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
            },
            {
              "name": "16276",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/16276"
            },
            {
              "name": "1015504",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1015504"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2006-0306",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops \u0026 Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not handled, leading to a thread exit."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "22529",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/22529"
                },
                {
                  "name": "http://www.designfolks.com.au/karma/DMPrimer/",
                  "refsource": "MISC",
                  "url": "http://www.designfolks.com.au/karma/DMPrimer/"
                },
                {
                  "name": "20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities",
                  "refsource": "BUGTRAQ",
                  "url": "http://www.securityfocus.com/archive/1/422381/100/0/threaded"
                },
                {
                  "name": "ADV-2006-0236",
                  "refsource": "VUPEN",
                  "url": "http://www.vupen.com/english/advisories/2006/0236"
                },
                {
                  "name": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756",
                  "refsource": "CONFIRM",
                  "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756"
                },
                {
                  "name": "18531",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/18531"
                },
                {
                  "name": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp",
                  "refsource": "CONFIRM",
                  "url": "http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp"
                },
                {
                  "name": "16276",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/16276"
                },
                {
                  "name": "1015504",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1015504"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2006-0306",
        "datePublished": "2006-01-19T00:00:00.000Z",
        "dateReserved": "2006-01-18T00:00:00.000Z",
        "dateUpdated": "2024-08-07T16:34:13.228Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }