Arbitrary Code Execution Vulnerability in CA BrightStor ARCServe Backup
CVE-2007-5328

Currently unrated

Key Information:

Vendor: Broadcom
Status: Brightstor Arcserve Backup; Brightstor Enterprise Backup
Vendor: CVE Published:; 13 October 2007

What is CVE-2007-5328?

The Message Engine RPC service in CA BrightStor ARCServe Backup versions v9.01 up to R11.5 and Enterprise Backup R10.5 can be exploited by attackers to execute arbitrary code. This is achieved through the manipulation of insecure method calls, which can alter the system's file structure and registry settings, leading to unauthorized access and control.

References

http://secunia.com/advisories/27192

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/37067

vdb-entryx_refsource_XF

http://supportconnectw.ca.com/public/storage/infodocs/bas...

x_refsource_CONFIRM

Timeline

Vulnerability published
Oct 13, 2007
Vulnerability Reserved
Oct 10, 2007

Broadcom

What is CVE-2007-5328?

References

Timeline