Vulnerability Details : CVE-2007-5003
Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function.
Vulnerability category: OverflowExecute code
At least one public exploit which can be used to exploit this vulnerability exists!
Exploit prediction scoring system (EPSS) score for CVE-2007-5003
Probability of exploitation activity in the next 30 days: 94.15%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 99 % EPSS Score History EPSS FAQ
Metasploit modules for CVE-2007-5003
-
CA BrightStor ARCserve for Laptops and Desktops LGServer Buffer Overflow
Disclosure Date: 2007-06-06First seen: 2020-04-26exploit/windows/brightstor/lgserver_rxrloginThis module exploits a stack buffer overflow in Computer Associates BrightStor ARCserve Backup for Laptops & Desktops 11.1. By sending a specially crafted request, an attacker could overflow the buffer and execute arbitrary code. Authors: - MC <mc@metasploit.com>
CVSS scores for CVE-2007-5003
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Source |
|---|---|---|---|---|---|
|
10.0
|
HIGH | AV:N/AC:L/Au:N/C:C/I:C/A:C |
10.0
|
10.0
|
nvd@nist.gov |
CWE ids for CVE-2007-5003
-
The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer.Assigned by: nvd@nist.gov (Primary)
References for CVE-2007-5003
- http://research.eeye.com/html/advisories/published/AD20070920.html
- http://www.securityfocus.com/archive/1/480252/100/100/threaded
-
http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35674
Patch
-
http://www.securityfocus.com/bid/24348
Computer Associates ARCserve Backup Multiple Remote Buffer Overflow Vulnerabilities
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=599
- http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp
- http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=156006
- http://www.securitytracker.com/id?1018728
Products affected by CVE-2007-5003
- cpe:2.3:a:ca:protection_suites:r2:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.0:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.1:sp1:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.5:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:desktop_management_suite:11.0:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:desktop_management_suite:11.1:*:*:*:*:*:*:*
- cpe:2.3:a:broadcom:desktop_management_suite:11.2:*:*:*:*:*:*:*