cbcvebase.
CVE-2006-5172
published 2007-01-16

CVE-2006-5172: Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 through 11.5, Enterprise Backup…

PriorityP350critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
14.88%
96.3th percentile
Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Protection Suites r2 allows remote attackers to execute arbitrary code via crafted SUNRPC packets, aka the "Mediasvr.exe String Handling Overflow," a different vulnerability than CVE-2006-5171.

Affected

10 ranges
VendorProductVersion rangeFixed in
broadcombrightstor_arcserve_backup<= 11.5
broadcombrightstor_arcserve_backup
broadcombrightstor_arcserve_backup
broadcombrightstor_arcserve_backup
broadcombrightstor_enterprise_backup
broadcombusiness_protection_suite
broadcomserver_protection_suite
cabrightstor_arcserve_backup
cabusiness_protection_suite
caprotection_suites
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.