CVE-2007-3825

Published: Jul 18, 2007Modified: Apr 23, 2026

9.3

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 8.6 / Impact: 10.0

Source: NVD

Description

Multiple stack-based buffer overflows in the RPC implementation in alert.exe before 8.0.255.0 in CA (formerly Computer Associates) Alert Notification Server, as used in Threat Manager for the Enterprise, Protection Suites, certain BrightStor ARCserve products, and BrightStor Enterprise Backup, allow remote attackers to execute arbitrary code by sending certain data to unspecified RPC procedures.

Affected (10)

Products: Broadcom: Alert Notification Server, Brightstor Arcserve Backup, Brightstor Enterprise Backup · Ca: Anti Virus For The Enterprise, Brightstor Arcserve Backup, Brightstor Arcserve Client, Protection Suites, Threat Manager

3 products

Alert Notification Server

Brightstor Arcserve Backup

Brightstor Enterprise Backup

5 products

Anti Virus For The Enterprise

Brightstor Arcserve Backup

Brightstor Arcserve Client

Protection Suites

Configuration A

10 vulnerable

Vulnerable Software	Affected Versions
Broadcom Alert Notification Server	All versions
Broadcom Brightstor Arcserve Backup	Version 11.1
Broadcom Brightstor Arcserve Backup	Version 11.5
Broadcom Brightstor Arcserve Backup	Version 9.01
Broadcom Brightstor Enterprise Backup	Version 10.5
Ca Anti Virus For The Enterprise	Version 8
Ca Brightstor Arcserve Backup	Version 11
Ca Brightstor Arcserve Client	All versions
Ca Protection Suites	Version r3
Ca Threat Manager	Version 8

References (22)

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=561

Source: cve@mitre.org

Vendor Advisory

http://secunia.com/advisories/26088

Source: cve@mitre.org

PatchVendor Advisory

http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-secnotice.asp

Source: cve@mitre.org

Patch

http://www.securityfocus.com/bid/24947

Source: cve@mitre.org

http://www.securitytracker.com/id?1018402

Source: cve@mitre.org

http://www.securitytracker.com/id?1018403

Source: cve@mitre.org

http://www.securitytracker.com/id?1018404

Source: cve@mitre.org

http://www.securitytracker.com/id?1018405

Source: cve@mitre.org

http://www.securitytracker.com/id?1018406

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/2559

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/35467

Source: cve@mitre.org

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=561

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://secunia.com/advisories/26088

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-secnotice.asp

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securityfocus.com/bid/24947

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1018402

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1018403

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1018404

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1018405

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securitytracker.com/id?1018406

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/2559

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/35467

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.