9.3

CVE-2007-3825

Multiple stack-based buffer overflows in the RPC implementation in alert.exe before 8.0.255.0 in CA (formerly Computer Associates) Alert Notification Server, as used in Threat Manager for the Enterprise, Protection Suites, certain BrightStor ARCserve products, and BrightStor Enterprise Backup, allow remote attackers to execute arbitrary code by sending certain data to unspecified RPC procedures.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CaAnti-virus For The Enterprise Version8 Editionenterprise
CaBrightstor Arcserve Backup Version11 Editionwindows
CaBrightstor Arcserve Client Editionwindows
CaProtection Suites Versionr3
CaThreat Manager Version8 Editionenterprise
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 14.09% 0.961
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=561
Vendor Advisory
http://secunia.com/advisories/26088
Patch
Vendor Advisory
http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-secnotice.asp
Patch
http://www.securityfocus.com/bid/24947
http://www.securitytracker.com/id?1018402
http://www.securitytracker.com/id?1018403
http://www.securitytracker.com/id?1018404
http://www.securitytracker.com/id?1018405
http://www.securitytracker.com/id?1018406
http://www.vupen.com/english/advisories/2007/2559
https://exchange.xforce.ibmcloud.com/vulnerabilities/35467