exploitDog

GHSA-rhr3-8qxq-x4qm

Опубликовано: 01 мая 2022

Источник: github

Github: Не прошло ревью

Описание

The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdr_handle_t data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 (0xbf) RPC request.

The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdr_handle_t data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 (0xbf) RPC request.

Ссылки

EPSS

Процентиль: 98%

0.53446

Средний

CVE ID

Связанные уязвимости

CVE-2007-1785

nvd

почти 19 лет назад

The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdr_handle_t data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 (0xbf) RPC request.

EPSS

Процентиль: 98%

0.53446

Средний

CVE ID