CVE-2007-2139
Last modified
CVE-2007-2139 is a vulnerability of currently unknown severity. Multiple stack-based buffer overflows in the SUN RPC service in CA (formerly Computer Associates) BrightStor ARCserve Media Server, as used in BrightStor ARCserve Backup 9.01 through 11.5 SP2, BrightStor Enterprise Backup 10.5, Server Protection Suite 2, and Business Protection Suite 2, allow remote attackers to execute arbitrary code via malformed RPC strings, a different vulnerability than CVE-2006-5171, CVE-2006-5172, and CVE-2007-1785.. EPSS estimates a 78.00% chance of exploitation in the next 30 days.
Description
Multiple stack-based buffer overflows in the SUN RPC service in CA (formerly Computer Associates) BrightStor ARCserve Media Server, as used in BrightStor ARCserve Backup 9.01 through 11.5 SP2, BrightStor Enterprise Backup 10.5, Server Protection Suite 2, and Business Protection Suite 2, allow remote attackers to execute arbitrary code via malformed RPC strings, a different vulnerability than CVE-2006-5171, CVE-2006-5172, and CVE-2007-1785.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Broadcom | Brightstor Arcserve Backup | 9.01 | — |
| Broadcom | Brightstor Arcserve Backup | 11.1 | — |
| Broadcom | Brightstor Arcserve Backup | 11.5 | Sp2 |
| Broadcom | Business Protection Suite | 2.0 | — |
| Broadcom | Server Protection Suite | 2 | — |
| Ca | Brightstor Arcserve Backup | 11 | — |
| Ca | Business Protection Suite | 2.0 | — |
References
- http://www.kb.cert.org/vuls/id/979825US Government Resource
- http://www.kb.cert.org/vuls/id/979825US Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-2139?
How severe is CVE-2007-2139?
How do I fix CVE-2007-2139?
Are you affected by CVE-2007-2139?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST