PT-2007-2126 · Ca · Ca Brightstor Mobile Backup

Published

2007-02-03

Updated

2021-04-08

CVE-2007-0672

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions BrightStor Mobile Backup version 4.0

Description The issue allows remote attackers to cause a denial of service, resulting in disk consumption and daemon hang. This is achieved by sending a specific value, 0xFFFFFF7F, at a certain point in an authentication negotiation packet. As a result, a large amount of data is written to a .USX file in the CA BABLDdataServerdatatransfer directory.

Recommendations For BrightStor Mobile Backup version 4.0, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-0672

Affected Products

Ca Brightstor Mobile Backup

PT-2007-2126 · Ca · Ca Brightstor Mobile Backup

CVE-2007-0672

Related Identifiers

Affected Products

References · 4