Detections
Analytics

CVE-2007-5082

critical

Description

Multiple stack-based buffer overflows in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r11.6 allow remote attackers to execute arbitrary code via unspecified CsAgent service commands with certain opcodes, related to missing validation of a length parameter.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/36825

http://www.vupen.com/english/advisories/2007/3275

http://www.securityfocus.com/bid/25823

http://www.securityfocus.com/archive/1/480808/100/0/threaded

http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35690

http://supportconnectw.ca.com/public/bstorhsm/infodocs/bstorhsm-secnot.asp

http://securitytracker.com/id?1018747

http://secunia.com/advisories/26914

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=601

http://dvlabs.tippingpoint.com/advisory/TPTI-07-16

Details

Source: Mitre, NVD

Published: 2007-10-01

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical