exploitDog

CVE-2006-5172

Опубликовано: 16 янв. 2007

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Protection Suites r2 allows remote attackers to execute arbitrary code via crafted SUNRPC packets, aka the "Mediasvr.exe String Handling Overflow," a different vulnerability than CVE-2006-5171.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*

Версия до 11.5 (включая)

cpe:2.3:a:broadcom:brightstor_arcserve_backup:9.01:*:*:*:*:*:*:*

cpe:2.3:a:broadcom:brightstor_enterprise_backup:10.5:*:*:*:*:*:*:*

cpe:2.3:a:ca:protection_suites:r2:*:*:*:*:*:*:*

EPSS

Процентиль: 96%

0.23459

Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-j994-cw63-pgjf

github

почти 4 года назад

Stack-based buffer overflow in the RPC interface in Mediasvr.exe in Computer Associates (CA) Brightstor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Protection Suites r2 allows remote attackers to execute arbitrary code via crafted SUNRPC packets, aka the "Mediasvr.exe String Handling Overflow," a different vulnerability than CVE-2006-5171.

EPSS

Процентиль: 96%

0.23459

Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-Other