CVE-2007-0449: Buffer Overflow
First published: Tue Jan 23 2007(Updated: )
Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Broadcom BrightStor Mobile Backup | =r4.0 | |
| CA ARCserve Backup for Laptops and Desktops | =11.0 | |
| CA ARCserve Backup for Laptops and Desktops | =11.1 | |
| CA ARCserve Backup for Laptops and Desktops | =11.1-sp1 | |
| Broadcom Business Protection Suite | =2.0 | |
| Broadcom Desktop Management Suite | =11.0 | |
| Broadcom Desktop Management Suite | =11.1 | |
| Broadcom Desktop Protection Suite | =2.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp
- http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993
- http://www.kb.cert.org/vuls/id/357308
- http://www.kb.cert.org/vuls/id/611276
- http://www.securityfocus.com/bid/22340
- http://www.securityfocus.com/bid/22342
- http://www.osvdb.org/31593
- http://secunia.com/advisories/23897
- http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97696
- http://securitytracker.com/id?1017548
- http://www.securityfocus.com/bid/22199
- http://www.vupen.com/english/advisories/2007/0314
- https://exchange.xforce.ibmcloud.com/vulnerabilities/31704
- http://www.securityfocus.com/archive/1/458648/100/0/threaded
- http://www.securityfocus.com/archive/1/458644/100/0/threaded
- http://www.securityfocus.com/archive/1/457945/30/8460/threaded
Frequently Asked Questions
What is the severity of CVE-2007-0449?
CVE-2007-0449 has a high severity rating due to its potential for allowing remote code execution via buffer overflow vulnerabilities.
How do I fix CVE-2007-0449?
To fix CVE-2007-0449, you should update your CA BrightStor ARCserve Backup and related applications to the latest patched versions provided by Broadcom.
Which versions are affected by CVE-2007-0449?
CVE-2007-0449 affects BrightStor ARCserve Backup versions 11.0 and 11.1, along with other specified Broadcom software versions.
Who is impacted by CVE-2007-0449?
Organizations using the affected versions of CA BrightStor ARCserve Backup and related software are at risk due to CVE-2007-0449.
What are the potential impacts of exploiting CVE-2007-0449?
Exploitation of CVE-2007-0449 could lead to unauthorized remote code execution, compromising system stability and data integrity.
- agent/references
- agent/type
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/weakness
- agent/tags
- agent/softwarecombine
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/broadcom
- canonical/broadcom brightstor mobile backup
- version/broadcom brightstor mobile backup/r4.0
- canonical/ca arcserve backup for laptops and desktops
- version/ca arcserve backup for laptops and desktops/11.0
- version/ca arcserve backup for laptops and desktops/11.1
- version/ca arcserve backup for laptops and desktops/11.1-sp1
- canonical/broadcom business protection suite
- version/broadcom business protection suite/2.0
- canonical/broadcom desktop management suite
- version/broadcom desktop management suite/11.0
- version/broadcom desktop management suite/11.1
- canonical/broadcom desktop protection suite
- version/broadcom desktop protection suite/2.0