CVE-2007-3825

Multiple stack-based buffer overflows in the RPC implementation in alert.exe before 8.0.255.0 in CA (formerly Computer Associates) Alert Notification Server, as used in Threat Manager for the Enterprise, Protection Suites, certain BrightStor ARCserve products, and BrightStor Enterprise Backup, allow remote attackers to execute arbitrary code by sending certain data to unspecified RPC procedures.

Affected Software

References

• http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=561
• http://secunia.com/advisories/26088
• http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-secnotice.asp
• http://www.securityfocus.com/bid/24947
• http://www.securitytracker.com/id?1018402
• http://www.securitytracker.com/id?1018403
• http://www.securitytracker.com/id?1018404
• http://www.securitytracker.com/id?1018405
• http://www.securitytracker.com/id?1018406
• http://www.vupen.com/english/advisories/2007/2559
• https://exchange.xforce.ibmcloud.com/vulnerabilities/35467
• http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=561
• http://secunia.com/advisories/26088
• http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-secnotice.asp
• http://www.securityfocus.com/bid/24947
• http://www.securitytracker.com/id?1018402
• http://www.securitytracker.com/id?1018403
• http://www.securitytracker.com/id?1018404
• http://www.securitytracker.com/id?1018405
• http://www.securitytracker.com/id?1018406
• http://www.vupen.com/english/advisories/2007/2559
• https://exchange.xforce.ibmcloud.com/vulnerabilities/35467