Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2007-0816

Published: 07/02/2007 Updated: 07/04/2021
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Broadcom

Vulnerability Summary

The RPC Server service (catirpc.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 SP2 and previous versions allows remote malicious users to cause a denial of service (service crash) via a crafted TADDR2UADDR that triggers a null pointer dereference in catirpc.dll, possibly related to null credentials or verifier fields.

Vulnerable Product Search on Vulmon Subscribe to Product

broadcom brightstor arcserve backup 11

broadcom brightstor arcserve backup 11.5

broadcom brightstor arcserve backup 11.1

Exploits

Exploit DB: CA BrightStor ARCserve 11.5.2.0 - 'catirpc.dll' RPC Server Denial of Service
#!/usr/bin/ruby # # Computer Associates (CA) Brightstor Backup Remote Procedure Call Server DoS (catirpcdll) # # Catirpcexe - Provides the endpoint mapper and enables RPC services for BrightStor Backup products # # (7c350): Access violation - code c0000005 (!!! second chance !!!) # eax=007ef924 ebx=2e009560 ecx=00325ad8 edx=007ef900 esi=0000 ...

Github Repositories

https://github.com/shirkdog/exploits

Exploit code

Exploits and Shellcode Exploit code by year/CVE 2006/CVE-2006-4868/vmlDoShtml 2007/CVE-2007-0816/catirpcdosrb 2007/CVE-2007-1785/camediasvrremotepy 2007/CVE-2007-2772/caloggerdospy 2007/CVE-2007-2772/camediasvrdospy Shellcode (by OS)

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/22365http://secunia.com/advisories/24009http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asphttp://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=35058http://secunia.com/advisories/24512http://osvdb.org/32989http://www.vupen.com/english/advisories/2007/0461https://exchange.xforce.ibmcloud.com/vulnerabilities/32137https://www.exploit-db.com/exploits/3248https://nvd.nist.govhttps://github.com/shirkdog/exploitshttps://www.exploit-db.com/exploits/3248/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-21991CVE-2024-32674path traversalCVE-2023-21987denial of servicedosCVE-2024-4647CVE-2024-25519CVE-2024-33612
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook