CVE-2007-5325

CWE-119 — Buffer Overflow3 documents3 sources

Severity

10.0CRITICAL

EPSS

19.3%

top 4.63%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom Brightstor Arcserve Backup Broadcom Brightstor Enterprise Backup

Timeline

PublishedOct 13

Latest updateMay 1

Description

Multiple buffer overflows in (1) the Message Engine and (2) AScore.dll in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allow remote attackers to execute arbitrary code via unspecified vectors.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDbroadcom/brightstor_arcserve_backup5 versions+4

▶NVDbroadcom/brightstor_enterprise_backup10.5

Patches

Patch: supportconnectw.ca.com ↗Patch: supportconnectw.ca.com ↗

🔴Vulnerability Details

GHSA

GHSA-j647-j6p7-jhrq: Multiple buffer overflows in (1) the Message Engine and (2) AScore↗2022-05-01

▶

CVEList

CVE-2007-5325: Multiple buffer overflows in (1) the Message Engine and (2) AScore↗2007-10-13

▶