CVE-2007-0169
Broadcom Brightstor Arcserve Backup < 11.5 - Memory Corruption
Title source: ruleDescription
Multiple buffer overflows in Computer Associates (CA) BrightStor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Server/Business Protection Suite r2 allow remote attackers to execute arbitrary code via RPC requests with crafted data for opnums (1) 0x2F and (2) 0x75 in the (a) Message Engine RPC service, or opnum (3) 0xCF in the Tape Engine service.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16418
metasploit
WORKING POC
NORMAL
by MC, aushack · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/brightstor/message_engine.rb
References (17)
Scores
EPSS
0.7782
EPSS Percentile
99.0%
Details
CWE
CWE-119
Status
published
Products (4)
broadcom/brightstor_arcserve_backup
9.01
broadcom/brightstor_arcserve_backup
< 11.5
broadcom/brightstor_enterprise_backup
10.5
broadcom/business_protection_suite
2.0
Published
Jan 11, 2007
Tracked Since
Feb 18, 2026