NVD

Id
53957  
Name
CVE-2007-1785  
Description
The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdr_handle_t data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 (0xbf) RPC request.  
Reject
 
CVSS Version
2  
CVSS Score
7.1  
Severity
High  
CVSS Base Score
7.1  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
3.9  
CVSS Vector
(AV:N/AC:H/Au:S/C:C/I:C/A:C)  
Pub Date
2017-01-07  
Published
2007-03-30  
Modified Date
2012-11-05  
Seq
2007-1785  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
273599 53957 CVE-2007-1785 20070329 CA Brightstor Backup Mediasvr.exe Remote Code Vulnerability  View
273600 53957 CVE-2007-1785 2509  View
273601 53957 CVE-2007-1785 http://supportconnectw.ca.com/public/storage/infodocs/babmedser-secnotice.asp  View
273602 53957 CVE-2007-1785 VU#151305  View
273603 53957 CVE-2007-1785 20070330 CA Brightstor Backup Mediasvr.exe Remote Code Vulnerability  View
273604 53957 CVE-2007-1785 20070331 CA BrightStor ARCserve Backup Mediasvr.exe vulnerability  View
273605 53957 CVE-2007-1785 23209  View
273606 53957 CVE-2007-1785 1017830  View
273607 53957 CVE-2007-1785 http://www.shirkdog.us/camediasvrremote.py  View
273608 53957 CVE-2007-1785 http://www.shirkdog.us/shk-004.html  View
273609 53957 CVE-2007-1785 ADV-2007-1161  View
273610 53957 CVE-2007-1785 brightstor-mediasvr-code-execution(33316)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
53076 JVNDB-2007-001768 CA BrightStor ARCserve Backup の RPC サービスにおける任意のコードを実行される脆弱性 CA BrightStor ARCserve Backup の mediasvr.exe の RPC サービスには、関数呼び出しのアドレス計算の処理に不備があるため、任意のコードを実行される脆弱性が存在します。 CVE-2007-1785 25140 CVE-2007-1785 53957 7.1 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001768.html 2007-03-30 2012-06-26 View