CVE-2007-5003
Broadcom Brightstor Arcserve Backup L... - Memory Corruption
Title source: ruleDescription
Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allow remote attackers to execute arbitrary code via a long (1) username or (2) password to the rxrLogin command in rxRPC.dll, or a long (3) username argument to the GetUserInfo function.
Exploits (2)
exploitdb
WORKING POC
VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16411
metasploit
WORKING POC
NORMAL
by MC · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/brightstor/lgserver_rxrlogin.rb
References (9)
Scores
EPSS
0.8208
EPSS Percentile
99.2%
Details
CWE
CWE-119
Status
published
Products (8)
broadcom/brightstor_arcserve_backup_laptops_desktops
4.0
broadcom/brightstor_arcserve_backup_laptops_desktops
11.0
broadcom/brightstor_arcserve_backup_laptops_desktops
11.1 (2 CPE variants)
broadcom/brightstor_arcserve_backup_laptops_desktops
11.5
broadcom/desktop_management_suite
11.0
broadcom/desktop_management_suite
11.1
broadcom/desktop_management_suite
11.2
ca/protection_suites
r2
Published
Oct 01, 2007
Tracked Since
Feb 18, 2026