CVE-2007-0816

CA BrightStor ARCserve Backup <11.5 SP2 - DoS

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-0816. PoCs published by Shirkdog.

AI-analyzed exploit summary This exploit triggers a denial-of-service (DoS) in CA BrightStor Backup's RPC Server (catirpc.exe) by sending a malformed RPC packet to the TADDR2UADDR procedure, causing a null pointer dereference. The PoC sends a UDP packet to the target port (default 111) to crash the service.

Description

The RPC Server service (catirpc.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 SP2 and earlier allows remote attackers to cause a denial of service (service crash) via a crafted TADDR2UADDR that triggers a null pointer dereference in catirpc.dll, possibly related to null credentials or verifier fields.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Shirkdog · rubydoswindows

https://www.exploit-db.com/exploits/3248

View Code ZIP pw:eip

This exploit triggers a denial-of-service (DoS) in CA BrightStor Backup's RPC Server (catirpc.exe) by sending a malformed RPC packet to the TADDR2UADDR procedure, causing a null pointer dereference. The PoC sends a UDP packet to the target port (default 111) to crash the service.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: CA BrightStor ARCserve Backup 11.5.2.0 (SP2)

No auth needed

Prerequisites: Network access to the target's RPC port (default 111)

MITRE ATT&CK