Vulnerability Details : CVE-2007-3825

Multiple stack-based buffer overflows in the RPC implementation in alert.exe before 8.0.255.0 in CA (formerly Computer Associates) Alert Notification Server, as used in Threat Manager for the Enterprise, Protection Suites, certain BrightStor ARCserve products, and BrightStor Enterprise Backup, allow remote attackers to execute arbitrary code by sending certain data to unspecified RPC procedures.

Vulnerability category: Execute code

Published 2007-07-18 23:30:00

Updated 2021-04-07 18:20:53

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2007-3825

Probability of exploitation activity in the next 30 days: 9.09%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 94 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2007-3825

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
9.3	HIGH	AV:N/AC:M/Au:N/C:C/I:C/A:C	8.6	10.0	[email protected]
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2007-3825

Products affected by CVE-2007-3825

CA » Brightstor Arcserve Backup » Version: 11 Windows Edition
cpe:2.3:a:ca:brightstor_arcserve_backup:11:*:windows:*:*:*:*:*
Matching versions
CA » Protection Suites » Version: R3
cpe:2.3:a:ca:protection_suites:r3:*:*:*:*:*:*:*
Matching versions
CA » Anti-virus For The Enterprise » Version: 8 Enterprise Edition
cpe:2.3:a:ca:anti-virus_for_the_enterprise:8:*:enterprise:*:*:*:*:*
Matching versions
CA » Brightstor Arcserve Client » Windows Edition
cpe:2.3:a:ca:brightstor_arcserve_client:*:*:windows:*:*:*:*:*
Matching versions
CA » Threat Manager » Version: 8 Enterprise Edition
cpe:2.3:a:ca:threat_manager:8:*:enterprise:*:*:*:*:*
Matching versions
Broadcom » Brightstor Arcserve Backup » Version: 11.1
cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
Matching versions
Broadcom » Brightstor Arcserve Backup » Version: 11.5
cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:*:*:*:*:*:*:*
Matching versions
Broadcom » Brightstor Arcserve Backup » Version: 9.01
cpe:2.3:a:broadcom:brightstor_arcserve_backup:9.01:*:*:*:*:*:*:*
Matching versions
Broadcom » Brightstor Enterprise Backup » Version: 10.5
cpe:2.3:a:broadcom:brightstor_enterprise_backup:10.5:*:*:*:*:*:*:*
Matching versions
Broadcom » Alert Notification Server
cpe:2.3:a:broadcom:alert_notification_server:*:*:*:*:*:*:*:*
Matching versions