Vulnerability Description
LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Brightstor Arcserve Backup Laptops Desktops | 11.0 |
| Broadcom | Business Protection Suite | 2.0 |
| Broadcom | Desktop Management Suite | 11.0 |
| Broadcom | Desktop Protection Suite | 2.0 |
| Ca | Business Protection Suite | 2.0 |
Related Weaknesses (CWE)
References
- http://osvdb.org/32948
- http://securityreason.com/securityalert/2218
- http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.Patch
- http://www.securityfocus.com/archive/1/458650/100/0/threaded
- http://www.securityfocus.com/bid/22337Patch
- http://osvdb.org/32948
- http://securityreason.com/securityalert/2218
- http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.Patch
- http://www.securityfocus.com/archive/1/458650/100/0/threaded
- http://www.securityfocus.com/bid/22337Patch
FAQ
What is CVE-2007-0673?
CVE-2007-0673 is a vulnerability with a CVSS score of 7.8 (HIGH). LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentic...
How severe is CVE-2007-0673?
CVE-2007-0673 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0673?
Check the references section above for vendor advisories and patch information. Affected products include: Broadcom Brightstor Arcserve Backup Laptops Desktops, Broadcom Business Protection Suite, Broadcom Desktop Management Suite, Broadcom Desktop Protection Suite, Ca Business Protection Suite.