CVE-2007-1448 - OpenCVE

The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service (disabled interface) by calling an unspecified RPC function.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:L/AC:L/Au:N/C:N/I:N/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Broadcom	Brightstor Arcserve Backup

Configuration 1 [-]

cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*

References

Link	Resource
http://secunia.com/advisories/24512
http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp
http://www.kb.cert.org/vuls/id/647273	US Government Resource
http://www.osvdb.org/32991
http://www.securityfocus.com/bid/22994
http://www.securitytracker.com/id?1017783
http://www.vupen.com/english/advisories/2007/0971
http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317	Patch
https://exchange.xforce.ibmcloud.com/vulnerabilities/33020

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2007-03-16T23:00:00

Updated: 2017-07-28T12:57:01

Reserved: 2007-03-13T00:00:00

Link: CVE-2007-1448

JSON object: View

NVD Information

Status : Modified

Published: 2007-03-16T23:19:00.000

Modified: 2021-04-07T18:13:05.147

Link: CVE-2007-1448

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-03-15T00:00:00", "descriptions": [{"lang": "en", "value": "The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service (disabled interface) by calling an unspecified RPC function."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1017783", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1017783"}, {"name": "ADV-2007-0971", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2007/0971"}, {"name": "24512", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/24512"}, {"name": "32991", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://www.osvdb.org/32991"}, {"name": "brightstor-rpc-tapeengine-dos(33020)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33020"}, {"name": "VU#647273", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/647273"}, {"name": "22994", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/22994"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-1448", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service (disabled interface) by calling an unspecified RPC function."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1017783", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1017783"}, {"name": "ADV-2007-0971", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2007/0971"}, {"name": "24512", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/24512"}, {"name": "32991", "refsource": "OSVDB", "url": "http://www.osvdb.org/32991"}, {"name": "brightstor-rpc-tapeengine-dos(33020)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33020"}, {"name": "VU#647273", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/647273"}, {"name": "22994", "refsource": "BID", "url": "http://www.securityfocus.com/bid/22994"}, {"name": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317", "refsource": "CONFIRM", "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"}, {"name": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp", "refsource": "CONFIRM", "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-1448", "datePublished": "2007-03-16T23:00:00", "dateReserved": "2007-03-13T00:00:00", "dateUpdated": "2017-07-28T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:*:*:*:*:*:*:*", "matchCriteriaId": "0A72E07D-2997-46CF-847F-899CB60FC771", "versionEndIncluding": "11.5", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service (disabled interface) by calling an unspecified RPC function."}, {"lang": "es", "value": "El motor Tape en CA (formalmente Computer Associates) BrightStor ARCserve Backup 11.5 y anteriores permite a atacantes remotos provocar una denegaci\u00f3n de servicio (deshabilitado del interfaz) llamando a una funci\u00f3n RPC no especificada."}], "id": "CVE-2007-1448", "lastModified": "2021-04-07T18:13:05.147", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "LOW", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 2.1, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:L/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-03-16T23:19:00.000", "references": [{"source": "cve@mitre.org", "url": "http://secunia.com/advisories/24512"}, {"source": "cve@mitre.org", "url": "http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/647273"}, {"source": "cve@mitre.org", "url": "http://www.osvdb.org/32991"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/22994"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1017783"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2007/0971"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=101317"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/33020"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}