Vulnerability Description
Multiple stack-based buffer overflows in Computer Associates (CA) Alert Notification Service (Alert.exe) 8.1.586.0, 8.0.450.0, and 7.1.758.0, as used in multiple CA products including Anti-Virus for the Enterprise 7.1 through r11.1 and Threat Manager for the Enterprise 8.1 and r8, allow remote authenticated users to execute arbitrary code via crafted RPC requests.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Anti-Virus For The Enterprise | 7.1 |
| Broadcom | Brightstor Arcserve Backup | 11.1 |
| Ca | Brightstor Arcserve Backup | 11 |
| Ca | Threat Manager For The Enterprise | r8 |
Related Weaknesses (CWE)
References
- http://community.ca.com/blogs/casecurityresponseblog/archive/2008/04/04/ca-alert
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=679
- http://secunia.com/advisories/29665
- http://securityreason.com/securityalert/3799
- http://www.securityfocus.com/archive/1/490466/100/0/threaded
- http://www.securityfocus.com/bid/28605
- http://www.securitytracker.com/id?1019789
- http://www.securitytracker.com/id?1019790
- http://www.vupen.com/english/advisories/2008/1103/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41639
- https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=173103
- http://community.ca.com/blogs/casecurityresponseblog/archive/2008/04/04/ca-alert
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=679
- http://secunia.com/advisories/29665
- http://securityreason.com/securityalert/3799
FAQ
What is CVE-2007-4620?
CVE-2007-4620 is a vulnerability with a CVSS score of 9.0 (HIGH). Multiple stack-based buffer overflows in Computer Associates (CA) Alert Notification Service (Alert.exe) 8.1.586.0, 8.0.450.0, and 7.1.758.0, as used in multiple CA products including Anti-Virus for t...
How severe is CVE-2007-4620?
CVE-2007-4620 has been rated HIGH with a CVSS base score of 9.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-4620?
Check the references section above for vendor advisories and patch information. Affected products include: Broadcom Anti-Virus For The Enterprise, Broadcom Brightstor Arcserve Backup, Ca Brightstor Arcserve Backup, Ca Threat Manager For The Enterprise.