CVE-2007-1785

Name of the Vulnerable Software and Affected Versions: CA BrightStor ARCserve Backup version 11.5 SP2 build 4237

Description: The issue concerns the RPC service in mediasvr.exe, which allows remote attackers to execute arbitrary code. This is achieved by sending crafted xdr handle t data in RPC packets, specifically used in calculating an address for a function call. An example of exploitation is demonstrated using the 191 (0xbf) RPC request.

Recommendations: For CA BrightStor ARCserve Backup version 11.5 SP2 build 4237, consider restricting access to the RPC service in mediasvr.exe to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.