CVE-2007-5331
Last modified
CVE-2007-5331 is a vulnerability of currently unknown severity. Queue.dll for the message queuing service (LQserver.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to execute arbitrary code via a malformed ONRPC protocol request for operation 0x76, which causes ARCserve Backup to dereference arbitrary pointers.. EPSS estimates a 9.90% chance of exploitation in the next 30 days.
Description
Queue.dll for the message queuing service (LQserver.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to execute arbitrary code via a malformed ONRPC protocol request for operation 0x76, which causes ARCserve Backup to dereference arbitrary pointers.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Brightstor Arcserve Backup | 9.01 |
| Broadcom | Brightstor Arcserve Backup | 11.1 |
| Broadcom | Brightstor Arcserve Backup | 11.5 |
| Broadcom | Brightstor Enterprise Backup | 10.5 |
| Broadcom | Business Protection Suite | 2.0 |
| Broadcom | Server Protection Suite | 2 |
| Ca | Brightstor Arcserve Backup | 11 |
| Ca | Business Protection Suite | 2.0 |
References
- http://secunia.com/advisories/27192Vendor Advisory
- http://www.vupen.com/english/advisories/2007/3470Vendor Advisory
- http://secunia.com/advisories/27192Vendor Advisory
- http://www.vupen.com/english/advisories/2007/3470Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2007-5331?
How severe is CVE-2007-5331?
How do I fix CVE-2007-5331?
Are you affected by CVE-2007-5331?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST