CVE-2007-0060
published 2007-07-26CVE-2007-0060: Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11…
PriorityP359critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
23.64%
97.5th percentile
Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11 Build 54_4 on Windows and NetWare, as used in CA Advantage Data Transport, eTrust Admin, certain BrightStor products, certain CleverPath products, and certain Unicenter products, allows remote attackers to execute arbitrary code via a crafted message to TCP port 3104.
Affected
45 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| broadcom | advantage_data_transport | — | — |
| broadcom | brightstor_portal | — | — |
| broadcom | brightstor_san_manager | — | — |
| broadcom | brightstor_san_manager | — | — |
| broadcom | cleverpath_aion | — | — |
| broadcom | cleverpath_ecm | — | — |
| broadcom | cleverpath_olap | — | — |
| broadcom | cleverpath_predictive_analysis_server | — | — |
| broadcom | cleverpath_predictive_analysis_server | — | — |
| broadcom | etrust_admin | — | — |
| broadcom | etrust_admin | — | — |
| broadcom | unicenter_application_performance_monitor | — | — |
| broadcom | unicenter_application_performance_monitor | — | — |
| broadcom | unicenter_asset_management | — | — |
| broadcom | unicenter_asset_management | — | — |
| broadcom | unicenter_asset_management | — | — |
| broadcom | unicenter_data_transport_option | — | — |
| broadcom | unicenter_jasmine | — | — |
| broadcom | unicenter_network_and_systems_management | — | — |
| broadcom | unicenter_network_and_systems_management | — | — |
| broadcom | unicenter_nsm_wireless_network_management_option | — | — |
| broadcom | unicenter_remote_control | — | — |
| broadcom | unicenter_service_level_management | — | — |
| broadcom | unicenter_service_level_management | — | — |
| broadcom | unicenter_service_level_management | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://secunia.com/advisories/26190http://supportconnectw.ca.com/public/dto_transportit/infodocs/camsgquevul-secnot.asphttp://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149809http://www.iss.net/threats/272.htmlhttp://www.securityfocus.com/archive/1/474602/100/0/threadedhttp://www.securityfocus.com/bid/25051http://www.securitytracker.com/id?1018449http://www.vupen.com/english/advisories/2007/2638https://exchange.xforce.ibmcloud.com/vulnerabilities/32234http://secunia.com/advisories/26190http://supportconnectw.ca.com/public/dto_transportit/infodocs/camsgquevul-secnot.asphttp://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149809http://www.iss.net/threats/272.htmlhttp://www.securityfocus.com/archive/1/474602/100/0/threadedhttp://www.securityfocus.com/bid/25051http://www.securitytracker.com/id?1018449http://www.vupen.com/english/advisories/2007/2638https://exchange.xforce.ibmcloud.com/vulnerabilities/32234
2007-07-26
Published