CVE-2007-5332

CA BrightStor ARCServe Backup 9.01-R11.5 and Enterprise Backup r10.5 - Memory Corruption

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-5332. PoCs published by M. Shirk.

AI-analyzed exploit summary This exploit triggers a denial-of-service (DoS) in Computer Associates BrightStor ARCserve Backup by sending a malformed RPC packet to the caloggerd service, causing a null pointer dereference in camt70.dll. The PoC constructs a crafted packet with a null hostname, leading to a crash.

Description

Multiple unspecified vulnerabilities in (1) mediasvr and (2) caloggerd in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, have unknown impact and attack vectors related to memory corruption.

Exploits (1)

exploitdb WORKING POC VERIFIED

by M. Shirk · pythondoswindows

https://www.exploit-db.com/exploits/30046

View Code ZIP pw:eip

This exploit triggers a denial-of-service (DoS) in Computer Associates BrightStor ARCserve Backup by sending a malformed RPC packet to the caloggerd service, causing a null pointer dereference in camt70.dll. The PoC constructs a crafted packet with a null hostname, leading to a crash.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Computer Associates BrightStor ARCserve Backup v9.01, r11.1, r11.5, r11 for Windows; BrightStor Enterprise Backup r10.5; CA Server Protection Suite r2; CA Business Protection Suite r2

No auth needed

Prerequisites: Network access to the target's RPC port (111) and the caloggerd service port

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →