CVE-2006-5172

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Protection Suites r2 allows remote attackers to execute arbitrary code via crafted SUNRPC packets, aka the "Mediasvr.exe String Handling Overflow," a different vulnerability than CVE-2006-5171.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup:9.01:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_enterprise_backup:10.5:*:*:*:*:*:*:*
cpe:2.3:a:ca:protection_suites:r2:*:*:*:*:*:*:*

History

21 Nov 2024, 00:18

Type Values Removed Values Added
References () http://osvdb.org/31320 - () http://osvdb.org/31320 -
References () http://secunia.com/advisories/23648 - () http://secunia.com/advisories/23648 -
References () http://securitytracker.com/id?1017506 - () http://securitytracker.com/id?1017506 -
References () http://supportconnectw.ca.com/public/storage/infodocs/babimpsec-notice.asp - Exploit () http://supportconnectw.ca.com/public/storage/infodocs/babimpsec-notice.asp - Exploit
References () http://www.iss.net/threats/253.html - () http://www.iss.net/threats/253.html -
References () http://www.securityfocus.com/archive/1/456711 - () http://www.securityfocus.com/archive/1/456711 -
References () http://www.securityfocus.com/bid/22016 - () http://www.securityfocus.com/bid/22016 -
References () http://www.vupen.com/english/advisories/2007/0154 - () http://www.vupen.com/english/advisories/2007/0154 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/29344 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/29344 -

Information

Published : 2007-01-16 20:28

Updated : 2024-11-21 00:18


NVD link : CVE-2006-5172

Mitre link : CVE-2006-5172

CVE.ORG link : CVE-2006-5172


JSON object : View

Products Affected

broadcom

  • brightstor_enterprise_backup
  • brightstor_arcserve_backup

ca

  • protection_suites