What is CVE-2007-1785?

CVE-2007-1785 is a vulnerability in N/a. Published 2007-03-31.

Is CVE-2007-1785 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2007-1785

The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote attackers to execute arbitrary code via crafted xdr_handle_t data in RPC packets, which is used in calculating an address for a function cal…

EPSS: 0.536 (98.0th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

1017830 (vdb-entry, x_refsource_SECTRACK)
www.shirkdog.us/shk-004.html (x_refsource_MISC)
20070329 CA Brightstor Backup Mediasvr.exe Remote Code Vulnerability (mailing-list, x_refsource_FULLDISC)
supportconnectw.ca.com/public/storage/infodocs/babmedser-secnotice.asp (x_refsource_CONFIRM)
www.shirkdog.us/camediasvrremote.py (x_refsource_MISC)
brightstor-mediasvr-bo(33316) (vdb-entry, x_refsource_XF)
24682 (x_refsource_SECUNIA, third-party-advisory)
VU#151305 (x_refsource_CERT-VN, third-party-advisory)
23209 (vdb-entry, x_refsource_BID)
2509 (x_refsource_SREASON, third-party-advisory)

Frequently asked questions

What is CVE-2007-1785?: CVE-2007-1785 is a vulnerability in N/a. Published 2007-03-31.
Is CVE-2007-1785 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.