Vulnerabilities > Broadcom > Brightstor Arcserve Backup > 11
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2008-04-27 | CVE-2008-1979 | Numeric Errors vulnerability in Broadcom Brightstor Arcserve Backup The Discovery Service (casdscvc) in CA ARCserve Backup 12.0.5454.0 and earlier allows remote attackers to cause a denial of service (crash) via a packet with a large integer value used in an increment to TCP port 41523, which triggers a buffer over-read. | 5.0 |
| 2007-10-13 | CVE-2007-5332 | Resource Management Errors vulnerability in Broadcom products Multiple unspecified vulnerabilities in (1) mediasvr and (2) caloggerd in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, have unknown impact and attack vectors related to memory corruption. | 10.0 |
| 2007-10-13 | CVE-2007-5330 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Broadcom products The cadbd RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to (1) execute arbitrary code via stack-based buffer overflows in unspecified RPC procedures, and (2) trigger memory corruption related to the use of "handle" RPC arguments as pointers. | 10.0 |
| 2007-10-13 | CVE-2007-5328 | Permissions, Privileges, and Access Controls vulnerability in Broadcom products The Message Engine RPC service in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows attackers to execute arbitrary code by using certain "insecure method calls" to modify the file system and registry, aka "Privileged function exposure." | 10.0 |
| 2007-10-13 | CVE-2007-5327 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Broadcom products Stack-based buffer overflow in the RPC interface for the Message Engine (mediasvr.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to execute arbitrary code via a long argument in the 0x10d opnum. | 10.0 |
| 2007-10-13 | CVE-2007-5325 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Broadcom products Multiple buffer overflows in (1) the Message Engine and (2) AScore.dll in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allow remote attackers to execute arbitrary code via unspecified vectors. | 10.0 |
| 2007-06-06 | CVE-2007-2864 | Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a large invalid value of the coffFiles field in a .CAB file. | 9.3 |
| 2007-03-16 | CVE-2007-1448 | Unspecified vulnerability in Broadcom Brightstor Arcserve Backup The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service (disabled interface) by calling an unspecified RPC function. | 2.1 |
| 2007-03-16 | CVE-2007-1447 | Unspecified vulnerability in Broadcom Brightstor Arcserve Backup The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC procedure arguments, which result in memory corruption, a different vulnerability than CVE-2006-6076. | 10.0 |
| 2007-02-07 | CVE-2007-0816 | Unspecified vulnerability in Broadcom Brightstor Arcserve Backup 11/11.1/11.5 The RPC Server service (catirpc.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 SP2 and earlier allows remote attackers to cause a denial of service (service crash) via a crafted TADDR2UADDR that triggers a null pointer dereference in catirpc.dll, possibly related to null credentials or verifier fields. | 5.0 |