CVE-2007-3216
Description
Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.1 allow remote attackers to execute arbitrary code via crafted arguments to the (1) rxsAddNewUser, (2) rxsSetUserInfo, (3) rxsRenameUser, (4) rxsSetMessageLogSettings, (5) rxsExportData, (6) rxsSetServerOptions, (7) rxsRenameFile, (8) rxsACIManageSend, (9) rxsExportUser, (10) rxsImportUser, (11) rxsMoveUserData, (12) rxsUseLicenseIni, (13) rxsLicGetSiteId, (14) rxsGetLogFileNames, (15) rxsGetBackupLog, (16) rxsBackupComplete, (17) rxsSetDataProtectionSecurityData, (18) rxsSetDefaultConfigName, (19) rxsGetMessageLogSettings, (20) rxsHWDiskGetTotal, (21) rxsHWDiskGetFree, (22) rxsGetSubDirs, (23) rxsGetServerDBPathName, (24) rxsSetServerOptions, (25) rxsDeleteFile, (26) rxsACIManageSend, (27) rxcReadBackupSetList, (28) rxcWriteConfigInfo, (29) rxcSetAssetManagement, (30) rxcWriteFileListForRestore, (31) rxcReadSaveSetProfile, (32) rxcInitSaveSetProfile, (33) rxcAddSaveSetNextAppList, (34) rxcAddSaveSetNextFilesPathList, (35) rxcAddNextBackupSetIncWildCard, (36) rxcGetRevisions, (37) rxrAddMovedUser, (38) rxrSetClientVersion, or (39) rxsSetDataGrowthScheduleAndFilter commands.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.1:*:*:*:*:*:*:*
- Range: r11.1
Patches
Vulnerability mechanics
References
15- secunia.com/advisories/25606nvdVendor Advisory
- www.ca.com/us/securityadvisor/newsinfo/collateral.aspxnvdVendor Advisory
- www.ca.com/us/securityadvisor/vulninfo/vuln.aspxnvdVendor Advisory
- www.vupen.com/english/advisories/2007/2121nvdVendor Advisory
- labs.idefense.com/intelligence/vulnerabilities/display.phpnvd
- osvdb.org/35329nvd
- research.eeye.com/html/advisories/published/AD20070920.htmlnvd
- research.eeye.com/html/advisories/upcoming/20070604.htmlnvd
- supportconnectw.ca.com/public/sams/lifeguard/infodocs/bsabld-securitynotice.aspnvd
- supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.aspnvd
- www.securityfocus.com/archive/1/480252/100/100/threadednvd
- www.securityfocus.com/bid/24348nvd
- www.securitytracker.com/idnvd
- www.securitytracker.com/idnvd
- exchange.xforce.ibmcloud.com/vulnerabilities/34805nvd
News mentions
0No linked articles in our index yet.