Broadcom Brightstor Arcserve Backup Laptops Desktops vulnerabilities
11 known vulnerabilities affecting broadcom/brightstor_arcserve_backup_laptops_desktops.
Total CVEs
11
CISA KEV
0
Public exploits
4
Exploited in wild
0
Severity breakdown
CRITICAL7HIGH2MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2007-5003CRITICALCVSS 10.0PoCv4.0v11.0+2 more2007-10-01
CVE-2007-5003 [CRITICAL] CWE-119 CVE-2007-5003: Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Lap
Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function.
nvd
CVE-2007-5006CRITICALCVSS 10.0v4.0v11.0+2 more2007-10-01
CVE-2007-5006 [CRITICAL] CWE-287 CVE-2007-5006: Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Des
Multiple command handlers in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 do not verify if a peer is authenticated, which allows remote attackers to add and delete users, and start client restores.
nvd
CVE-2007-5004CRITICALCVSS 9.3v4.0v11.0+2 more2007-10-01
CVE-2007-5004 [CRITICAL] CWE-189 CVE-2007-5004: Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11
Integer overflow in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to execute arbitrary code via a long username and a certain "useless" password.
nvd
CVE-2007-5005CRITICALCVSS 10.0v4.0v11.0+2 more2007-10-01
CVE-2007-5005 [CRITICAL] CWE-22 CVE-2007-5005: Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backu
Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote attackers to upload and overwrite arbitrary files via a ..\ (dot dot backslash) sequence in the destination filename argument to sub-function 8 in the rxrReceiveFileFromServer command.
nvd
CVE-2007-3216CRITICALCVSS 10.0PoCv11.12007-06-14
CVE-2007-3216 [CRITICAL] CWE-119 CVE-2007-3216: Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve
Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via crafted arguments to the (1) rxsAddNewUser, (2) rxsSetUserInfo, (3) rxsRenameUser, (4) rxsSetMessageLogSettings, (5) rxsExportData, (6) rxsSetServerOptions, (7)
nvd
CVE-2007-0672HIGHCVSS 7.8v11.0v11.12007-02-03
CVE-2007-0672 [HIGH] CVE-2007-0672: LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (d
LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\Server\data\transfer\.
nvd
CVE-2007-0673HIGHCVSS 7.8v11.0v11.12007-02-03
CVE-2007-0673 [HIGH] CWE-119 CVE-2007-0673: LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to c
LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read.
nvd
CVE-2007-0449CRITICALCVSS 10.0PoCv11.0v11.12007-01-23
CVE-2007-0449 [CRITICAL] CWE-119 CVE-2007-0449: Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops
Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200.
nvd
CVE-2006-0307MEDIUMCVSS 5.0v11.0v11.12006-01-19
CVE-2006-0307 [MEDIUM] CWE-399 CVE-2006-0307: The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Ba
The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to ca
nvd
CVE-2006-0306MEDIUMCVSS 5.0PoCv11.0v11.12006-01-19
CVE-2006-0306 [MEDIUM] CWE-399 CVE-2006-0306: The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) Brigh
The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote
nvd
CVE-2005-3653CRITICALCVSS 10.0v11.0v11.12005-12-31
CVE-2005-3653 [CRITICAL] CWE-119 CVE-2005-3653: Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology
Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field.
nvd