Vulnerability Details : CVE-2007-3216

Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via crafted arguments to the (1) rxsAddNewUser, (2) rxsSetUserInfo, (3) rxsRenameUser, (4) rxsSetMessageLogSettings, (5) rxsExportData, (6) rxsSetServerOptions, (7) rxsRenameFile, (8) rxsACIManageSend, (9) rxsExportUser, (10) rxsImportUser, (11) rxsMoveUserData, (12) rxsUseLicenseIni, (13) rxsLicGetSiteId, (14) rxsGetLogFileNames, (15) rxsGetBackupLog, (16) rxsBackupComplete, (17) rxsSetDataProtectionSecurityData, (18) rxsSetDefaultConfigName, (19) rxsGetMessageLogSettings, (20) rxsHWDiskGetTotal, (21) rxsHWDiskGetFree, (22) rxsGetSubDirs, (23) rxsGetServerDBPathName, (24) rxsSetServerOptions, (25) rxsDeleteFile, (26) rxsACIManageSend, (27) rxcReadBackupSetList, (28) rxcWriteConfigInfo, (29) rxcSetAssetManagement, (30) rxcWriteFileListForRestore, (31) rxcReadSaveSetProfile, (32) rxcInitSaveSetProfile, (33) rxcAddSaveSetNextAppList, (34) rxcAddSaveSetNextFilesPathList, (35) rxcAddNextBackupSetIncWildCard, (36) rxcGetRevisions, (37) rxrAddMovedUser, (38) rxrSetClientVersion, or (39) rxsSetDataGrowthScheduleAndFilter commands.
Publish Date : 2007-06-14 Last Update Date : 2018-10-16

Collapse All Expand All Select Select&Copy	Scroll To Vendor Statements(0) Additional Vendor Data(0) OVAL Definitions(0) Vulnerable Products(0) # Of Vulns By Products References(0) Metasploit Modules(0)	Comments View User Comments Add Comment	External Links Secunia Advisories XForce Advisories Vulnerability Details at NVD Vulnerability Details at Mitre Nessus Plugins Linux Kernel Git Repository First CVSS Guide
Search Twitter Search YouTube Search Google

- CVSS Scores & Vulnerability Types

CVSS Score	10.0
Confidentiality Impact	Complete (There is total information disclosure, resulting in all system files being revealed.)
Integrity Impact	Complete (There is a total compromise of system integrity. There is a complete loss of system protection, resulting in the entire system being compromised.)
Availability Impact	Complete (There is a total shutdown of the affected resource. The attacker can render the resource completely unavailable.)
Access Complexity	Low (Specialized access conditions or extenuating circumstances do not exist. Very little knowledge or skill is required to exploit. )
Authentication	Not required (Authentication is not required to exploit the vulnerability.)
Gained Access	Admin
Vulnerability Type(s)	Execute CodeOverflowCross Site Scripting
CWE ID	119

- Products Affected By CVE-2007-3216

#	Product Type	Vendor	Product	Version	Update	Edition	Language
1	Application	CA	Brightstor Arcserve Backup Laptops Desktops	11.1				Version Details Vulnerabilities

- Number Of Affected Versions By Product

Vendor	Product	Vulnerable Versions
CA	Brightstor Arcserve Backup Laptops Desktops	1

- References For CVE-2007-3216

http://www.securitytracker.com/id?1018216
SECTRACK 1018216

http://www.securitytracker.com/id?1018728
SECTRACK 1018728

http://www.vupen.com/english/advisories/2007/2121
VUPEN ADV-2007-2121

https://exchange.xforce.ibmcloud.com/vulnerabilities/34805
XF brightstor-unspecified-code-execution(34805)

http://www.securityfocus.com/archive/1/480252/100/100/threaded
BUGTRAQ 20070921 [CAID 35673, 35674, 35675, 35676, 35677]: CA ARCserve Backup for Laptops and Desktops Multiple Server Vulnerabilities

http://www.securityfocus.com/bid/24348
BID 24348 Computer Associates ARCserve Backup Multiple Remote Buffer Overflow Vulnerabilities Release Date:2010-11-05

http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35673 CONFIRM

http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp CONFIRM

http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006 CONFIRM

http://research.eeye.com/html/advisories/upcoming/20070604.html

http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/bsabld-securitynotice.asp CONFIRM

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599
IDEFENSE 20070920 CA ARCServe Backup for Laptops and Desktops Multiple Buffer Overflow Vulnerabilities

http://research.eeye.com/html/advisories/published/AD20070920.html
EEYE 20070920 Multiple Vulnerabilities in CA ARCserve for Laptops & Desktops

- Metasploit Modules Related To CVE-2007-3216

CA BrightStor ARCserve for Laptops and Desktops LGServer Multiple Commands Buffer Overflow
This module exploits a stack buffer overflow in Computer Associates BrightStor ARCserve Backup for Laptops & Desktops 11.1. By sending a specially crafted request to multiple commands, an attacker could overflow the buffer and execute arbitrary code. Module type : exploit Rank : average Platforms : Windows
CA BrightStor ARCserve for Laptops and Desktops LGServer rxsSetDataGrowthScheduleAndFilter Buffer Overflow
This module exploits a stack buffer overflow in Computer Associates BrightStor ARCserve Backup for Laptops & Desktops 11.1. By sending a specially crafted request (rxsSetDataGrowthScheduleAndFilter), an attacker could overflow the buffer and execute arbitrary code. Module type : exploit Rank : average Platforms : Windows
CA BrightStor ARCserve for Laptops and Desktops LGServer Buffer Overflow
This module exploits a stack buffer overflow in Computer Associates BrightStor ARCserve Backup for Laptops & Desktops 11.1. By sending a specially crafted request (rxsUseLicenseIni), an attacker could overflow the buffer and execute arbitrary code. Module type : exploit Rank : average Platforms : Windows