Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5082

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-5082
Last Modified 06 Sep 2011 12:00:00
Published 01 Oct 2007 04:17:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-5082

Summary

Multiple stack-based buffer overflows in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r11.6 allow remote attackers to execute arbitrary code via unspecified CsAgent service commands with certain opcodes, related to missing validation of a length parameter.

Vulnerable Systems

Application

  • Brightstor Hierarchical Storage Manager 11.5


References

CONFIRM - http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35690

CONFIRM - http://supportconnectw.ca.com/public/bstorhsm/infodocs/bstorhsm-secnot.asp

SECUNIA - 26914

XF - ca-brightstor-csagent-bo(36825)

VUPEN - ADV-2007-3275

BID - 25823

BUGTRAQ - 20070927 [CAID 35690, 35691, 35692]: CA BrightStor Hierarchical Storage Manager CsAgent Multiple Vulnerabilities

SECTRACK - 1018747

IDEFENSE - 20070927 Computer Associates BrightStor HSM r11.5 Multiple Vulnerabilities

CONFIRM - http://dvlabs.tippingpoint.com/advisory/TPTI-07-16


Last Updated: 27 May 2016 10:46:04