CVE-2007-0060

3 documents3 sources
Severity
9.3CRITICAL
EPSS
21.8%
top 4.24%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
24
Broadcom Advantage Data TransportBroadcom Brightstor PortalBroadcom Brightstor SAN Manager+21 more
Timeline
PublishedJul 26
Latest updateMay 1

Description

Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11 Build 54_4 on Windows and NetWare, as used in CA Advantage Data Transport, eTrust Admin, certain BrightStor products, certain CleverPath products, and certain Unicenter products, allows remote attackers to execute arbitrary code via a crafted message to TCP port 3104.

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages24 packages

NVDca/etrust_admin4 versions+3
NVDbroadcom/etrust_admin8.0, 8.1+1

🔴Vulnerability Details

2
GHSA
GHSA-4c4h-q562-34mm: Stack-based buffer overflow in the Message Queuing Server (Cam2022-05-01
CVEList
CVE-2007-0060: Stack-based buffer overflow in the Message Queuing Server (Cam2007-07-26
CVE-2007-0060 (CRITICAL CVSS 9.3) | Stack-based buffer overflow in the | cvebase.io