Vulnerability Description
Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Brightstor Arcserve Backup Laptops Desktops | 11.0 |
| Broadcom | Brightstor Mobile Backup | r4.0 |
| Broadcom | Business Protection Suite | 2.0 |
| Broadcom | Desktop Management Suite | 11.0 |
| Broadcom | Desktop Protection Suite | 2.0 |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/23897PatchVendor Advisory
- http://securitytracker.com/id?1017548
- http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.Patch
- http://www.kb.cert.org/vuls/id/357308US Government Resource
- http://www.kb.cert.org/vuls/id/611276US Government Resource
- http://www.osvdb.org/31593
- http://www.securityfocus.com/archive/1/457945/30/8460/threaded
- http://www.securityfocus.com/archive/1/458644/100/0/threaded
- http://www.securityfocus.com/archive/1/458648/100/0/threaded
- http://www.securityfocus.com/bid/22199
- http://www.securityfocus.com/bid/22340
- http://www.securityfocus.com/bid/22342
- http://www.vupen.com/english/advisories/2007/0314Vendor Advisory
- http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97696
- http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993
FAQ
What is CVE-2007-0449?
CVE-2007-0449 is a vulnerability with a CVSS score of 10.0 (HIGH). Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop M...
How severe is CVE-2007-0449?
CVE-2007-0449 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0449?
Check the references section above for vendor advisories and patch information. Affected products include: Broadcom Brightstor Arcserve Backup Laptops Desktops, Broadcom Brightstor Mobile Backup, Broadcom Business Protection Suite, Broadcom Desktop Management Suite, Broadcom Desktop Protection Suite.