Vulnerability Description
The RPC Server service (catirpc.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 SP2 and earlier allows remote attackers to cause a denial of service (service crash) via a crafted TADDR2UADDR that triggers a null pointer dereference in catirpc.dll, possibly related to null credentials or verifier fields.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Brightstor Arcserve Backup | 11 |
References
- http://osvdb.org/32989
- http://secunia.com/advisories/24009
- http://secunia.com/advisories/24512
- http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.a
- http://www.securityfocus.com/bid/22365
- http://www.vupen.com/english/advisories/2007/0461
- http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=35058
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32137
- https://www.exploit-db.com/exploits/3248
- http://osvdb.org/32989
- http://secunia.com/advisories/24009
- http://secunia.com/advisories/24512
- http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.a
- http://www.securityfocus.com/bid/22365
FAQ
What is CVE-2007-0816?
CVE-2007-0816 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The RPC Server service (catirpc.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 SP2 and earlier allows remote attackers to cause a denial of service (service crash) via a cra...
How severe is CVE-2007-0816?
CVE-2007-0816 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-0816?
Check the references section above for vendor advisories and patch information. Affected products include: Broadcom Brightstor Arcserve Backup.