Broadcom : Security Vulnerabilities, CVEs, Published In 2007 (Denial of service)
Unspecified vulnerability in CA ERwin Process Modeler (formerly AllFusion Process Modeler) 7.2 might allow user-assisted remote attackers to cause a denial of service via a crafted Data Standards File (Datatype Standards File).
Max CVSS
4.3
EPSS Score
1.95%
Published
2007-10-13
Updated
2021-04-09
arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) 8 and certain other CA products allows remote attackers to cause a denial of service (infinite loop and loss of antivirus functionality) via an invalid "previous listing chunk number" field in a CHM file.
Max CVSS
4.3
EPSS Score
47.94%
Published
2007-07-26
Updated
2021-04-14
CA ERwin Data Model Validator (formerly AllFusion Data Model Validator) allows remote attackers to (1) cause a denial of service (application hang) via a malformed .EXP database file and (2) cause a denial of service (aaplication crash) via a crafted .EXP database file, which triggers a NULL dereference.
Max CVSS
7.8
EPSS Score
1.54%
Published
2007-07-11
Updated
2021-04-09
The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service (disabled interface) by calling an unspecified RPC function.
Max CVSS
2.1
EPSS Score
0.49%
Published
2007-03-16
Updated
2021-04-07
The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC procedure arguments, which result in memory corruption, a different vulnerability than CVE-2006-6076.
Max CVSS
10.0
EPSS Score
89.81%
Published
2007-03-16
Updated
2021-04-07
Heap-based buffer overflow in SW3eng.exe in the eID Engine service in CA (formerly Computer Associates) eTrust Intrusion Detection 3.0.5.57 and earlier allows remote attackers to cause a denial of service (application crash) via a long key length value to the remote administration port (9191/tcp).
Max CVSS
7.8
EPSS Score
33.84%
Published
2007-03-02
Updated
2021-04-09
The RPC Server service (catirpc.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 SP2 and earlier allows remote attackers to cause a denial of service (service crash) via a crafted TADDR2UADDR that triggers a null pointer dereference in catirpc.dll, possibly related to null credentials or verifier fields.
Max CVSS
5.0
EPSS Score
27.15%
Published
2007-02-07
Updated
2021-04-07
LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read.
Max CVSS
7.8
EPSS Score
2.38%
Published
2007-02-03
Updated
2021-04-08
LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\Server\data\transfer\.
Max CVSS
7.8
EPSS Score
1.45%
Published
2007-02-03
Updated
2021-04-08
9 vulnerabilities found