First published: Sat Feb 03 2007(Updated: )
LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Broadcom Business Protection Suite | =2.0 | |
Broadcom Business Protection Suite | =2.0 | |
CA ARCserve Backup for Laptops and Desktops | =11.0 | |
CA ARCserve Backup for Laptops and Desktops | =11.1 | |
CA ARCserve Backup for Laptops and Desktops | =11.1-sp1 | |
Broadcom Business Protection Suite | =2.0 | |
Broadcom Desktop Management Suite | =11.0 | |
Broadcom Desktop Management Suite | =11.1 | |
Broadcom Desktop Protection Suite | =2.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2007-0673 has a severity rating that indicates it can lead to a denial of service event due to a daemon crash.
To fix CVE-2007-0673, you should apply the latest patches or updates provided by Broadcom for the affected software versions.
CVE-2007-0673 affects BrightStor ARCserve Backup for Laptops & Desktops versions 11.0 and 11.1, including their respective service packs and related Broadcom products.
CVE-2007-0673 is classified as a denial of service vulnerability that can be triggered during the authentication negotiation process.
Yes, CVE-2007-0673 can be exploited remotely by attackers to crash the daemon.