CVE Vulnerabilities

CVE-2007-2139

Published: Apr 25, 2007 | Modified: Apr 09, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
10 HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Multiple stack-based buffer overflows in the SUN RPC service in CA (formerly Computer Associates) BrightStor ARCserve Media Server, as used in BrightStor ARCserve Backup 9.01 through 11.5 SP2, BrightStor Enterprise Backup 10.5, Server Protection Suite 2, and Business Protection Suite 2, allow remote attackers to execute arbitrary code via malformed RPC strings, a different vulnerability than CVE-2006-5171, CVE-2006-5172, and CVE-2007-1785.

Affected Software

Name Vendor Start Version End Version
Brightstor_arcserve_backup Broadcom 9.01 (including) 9.01 (including)
Brightstor_arcserve_backup Broadcom 11.1 (including) 11.1 (including)
Brightstor_arcserve_backup Broadcom 11.5-sp2 (including) 11.5-sp2 (including)
Business_protection_suite Broadcom 2.0 (including) 2.0 (including)
Server_protection_suite Broadcom 2 (including) 2 (including)
Brightstor_arcserve_backup Ca 11 (including) 11 (including)
Business_protection_suite Ca 2.0 (including) 2.0 (including)

References