CVE-2007-0060

Name: CVE-2007-0060
Creator: NVD / NIST
Published: 2007-07-26T00:30:00+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 23.64%

Last modified Jun 16, 2026

CVE-2007-0060 is a vulnerability of currently unknown severity. Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11 Build 54_4 on Windows and NetWare, as used in CA Advantage Data Transport, eTrust Admin, certain BrightStor products, certain CleverPath products, and certain Unicenter products, allows remote attackers to execute arbitrary code via a crafted message to TCP port 3104.. EPSS estimates a 23.64% chance of exploitation in the next 30 days.

Description

Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11 Build 54_4 on Windows and NetWare, as used in CA Advantage Data Transport, eTrust Admin, certain BrightStor products, certain CleverPath products, and certain Unicenter products, allows remote attackers to execute arbitrary code via a crafted message to TCP port 3104.

Metrics

EPSS Probability

23.64%

97.5th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

Vendor	Product	Versions	Update
Broadcom	Advantage Data Transport	3.0	—
Broadcom	Brightstor Portal	11.1	—
Broadcom	Brightstor San Manager	11.1	—
Broadcom	Brightstor San Manager	11.5	—
Broadcom	Cleverpath Aion	10.0	—
Broadcom	Cleverpath Ecm	3.5	—
Broadcom	Cleverpath Olap	5.1	—
Broadcom	Cleverpath Predictive Analysis Server	2.0	—
Broadcom	Cleverpath Predictive Analysis Server	3.0	—
Broadcom	Etrust Admin	8.0	—
Broadcom	Etrust Admin	8.1	—
Broadcom	Unicenter Application Performance Monitor	3.0	—
Broadcom	Unicenter Application Performance Monitor	3.5	—
Broadcom	Unicenter Asset Management	3.1	—
Broadcom	Unicenter Asset Management	3.2	—
Broadcom	Unicenter Asset Management	4.0	—
Broadcom	Unicenter Data Transport Option	2.0	—
Broadcom	Unicenter Jasmine	3.0	—
Broadcom	Unicenter Network And Systems Management	3.0	—
Broadcom	Unicenter Network And Systems Management	3.1	—
Broadcom	Unicenter Nsm Wireless Network Management Option	3.0	—
Broadcom	Unicenter Remote Control	6.0	—
Broadcom	Unicenter Service Level Management	3.0	—
Broadcom	Unicenter Service Level Management	3.0.1	—
Broadcom	Unicenter Service Level Management	3.0.2	—
Broadcom	Unicenter Service Level Management	3.5	—
Broadcom	Unicenter Software Delivery	3.0	—
Broadcom	Unicenter Software Delivery	3.1	—
Broadcom	Unicenter Software Delivery	4.0	—
Broadcom	Unicenter Tng	2.1	—
Broadcom	Unicenter Tng	2.2	—
Broadcom	Unicenter Tng	2.4	—
Broadcom	Unicenter Tng	2.4.2	—
Ca	Etrust Admin	2.1	—
Ca	Etrust Admin	2.4	—
Ca	Etrust Admin	2.7	—
Ca	Etrust Admin	2.9	—
Ca	Unicenter Asset Management	4.0	Sp1
Ca	Unicenter Enterprise Job Manager	1.0	Sp1
Ca	Unicenter Management	4.0	—
Ca	Unicenter Management	4.1	—
Ca	Unicenter Management	5.0	—
Ca	Unicenter Management	5.0.1	—
Ca	Unicenter Software Delivery	4.0	Sp1
Ca	Unicenter Tng	2.2	—

References

http://secunia.com/advisories/26190Third Party Advisory
http://supportconnectw.ca.com/public/dto_transportit/infodocs/camsgquevul-secnot.aspVendor Advisory
http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149809Vendor Advisory
http://www.iss.net/threats/272.htmlBroken Link
http://www.securityfocus.com/archive/1/474602/100/0/threaded
http://www.securityfocus.com/bid/25051Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1018449Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2007/2638Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/32234Third Party Advisory, VDB Entry
http://secunia.com/advisories/26190Third Party Advisory
http://supportconnectw.ca.com/public/dto_transportit/infodocs/camsgquevul-secnot.aspVendor Advisory
http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149809Vendor Advisory
http://www.iss.net/threats/272.htmlBroken Link
http://www.securityfocus.com/archive/1/474602/100/0/threaded
http://www.securityfocus.com/bid/25051Third Party Advisory, VDB Entry
http://www.securitytracker.com/id?1018449Third Party Advisory, VDB Entry
http://www.vupen.com/english/advisories/2007/2638Third Party Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/32234Third Party Advisory, VDB Entry

Timeline

Published: Jul 26, 2007
Last Modified: Jun 16, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2007-0060?

How severe is CVE-2007-0060?

Severity scoring for CVE-2007-0060 is pending analysis. The EPSS model estimates a 23.64% probability of exploitation in the next 30 days.

How do I fix CVE-2007-0060?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-0060?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST