Published: 16/01/2007 Updated: 07/04/2021

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 up to and including 11.5, Enterprise Backup 10.5, and CA Protection Suites r2 allows remote malicious users to execute arbitrary code via crafted SUNRPC packets, aka the "Mediasvr.exe String Handling Overflow," a different vulnerability than CVE-2006-5171.

Vulnerable Product	Search on Vulmon	Subscribe to Product
broadcom brightstor arcserve backup 9.01
broadcom brightstor arcserve backup
broadcom brightstor enterprise backup 10.5
ca protection suites r2

NVD-CWE-Other http://supportconnectw.ca.com/public/storage/infodocs/babimpsec-notice.asp http://www.iss.net/threats/253.html http://www.securityfocus.com/bid/22016 http://secunia.com/advisories/23648 http://securitytracker.com/id?1017506 http://www.securityfocus.com/archive/1/456711 http://osvdb.org/31320 http://www.vupen.com/english/advisories/2007/0154 https://exchange.xforce.ibmcloud.com/vulnerabilities/29344 https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2006-5172

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect