Vulnerability Details CVE-2007-0060
Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11 Build 54_4 on Windows and NetWare, as used in CA Advantage Data Transport, eTrust Admin, certain BrightStor products, certain CleverPath products, and certain Unicenter products, allows remote attackers to execute arbitrary code via a crafted message to TCP port 3104.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.263
EPSS Ranking 96.0%
CVSS Severity
CVSS v2 Score 9.3
References
- http://secunia.com/advisories/26190
- http://supportconnectw.ca.com/public/dto_transportit/infodocs/camsgquevul-secnot.asp
- http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149809
- http://www.iss.net/threats/272.html
- http://www.securityfocus.com/archive/1/474602/100/0/threaded
- http://www.securityfocus.com/bid/25051
- http://www.securitytracker.com/id?1018449
- http://www.vupen.com/english/advisories/2007/2638
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32234
- http://secunia.com/advisories/26190
- http://supportconnectw.ca.com/public/dto_transportit/infodocs/camsgquevul-secnot.asp
- http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149809
- http://www.iss.net/threats/272.html
- http://www.securityfocus.com/archive/1/474602/100/0/threaded
- http://www.securityfocus.com/bid/25051
- http://www.securitytracker.com/id?1018449
- http://www.vupen.com/english/advisories/2007/2638
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32234
Products affected by CVE-2007-0060
-
cpe:2.3:a:broadcom:advantage_data_transport:3.0
-
cpe:2.3:a:broadcom:brightstor_portal:11.1
-
cpe:2.3:a:broadcom:brightstor_san_manager:11.1
-
cpe:2.3:a:broadcom:brightstor_san_manager:11.5
-
cpe:2.3:a:broadcom:cleverpath_aion:10.0
-
cpe:2.3:a:broadcom:cleverpath_ecm:3.5
-
cpe:2.3:a:broadcom:cleverpath_olap:5.1
-
cpe:2.3:a:broadcom:cleverpath_predictive_analysis_server:2.0
-
cpe:2.3:a:broadcom:cleverpath_predictive_analysis_server:3.0
-
cpe:2.3:a:broadcom:etrust_admin:8.0
-
cpe:2.3:a:broadcom:etrust_admin:8.1
-
cpe:2.3:a:broadcom:unicenter_application_performance_monitor:3.0
-
cpe:2.3:a:broadcom:unicenter_application_performance_monitor:3.5
-
cpe:2.3:a:broadcom:unicenter_asset_management:3.1
-
cpe:2.3:a:broadcom:unicenter_asset_management:3.2
-
cpe:2.3:a:broadcom:unicenter_asset_management:4.0
-
cpe:2.3:a:broadcom:unicenter_data_transport_option:2.0
-
cpe:2.3:a:broadcom:unicenter_jasmine:3.0
-
cpe:2.3:a:broadcom:unicenter_network_and_systems_management:3.0
-
cpe:2.3:a:broadcom:unicenter_network_and_systems_management:3.1
-
cpe:2.3:a:broadcom:unicenter_nsm_wireless_network_management_option:3.0
-
cpe:2.3:a:broadcom:unicenter_remote_control:6.0
-
cpe:2.3:a:broadcom:unicenter_service_level_management:3.0
-
cpe:2.3:a:broadcom:unicenter_service_level_management:3.0.1
-
cpe:2.3:a:broadcom:unicenter_service_level_management:3.0.2
-
cpe:2.3:a:broadcom:unicenter_service_level_management:3.5
-
cpe:2.3:a:broadcom:unicenter_software_delivery:3.0
-
cpe:2.3:a:broadcom:unicenter_software_delivery:3.1
-
cpe:2.3:a:broadcom:unicenter_software_delivery:4.0
-
cpe:2.3:a:broadcom:unicenter_tng:2.1
-
cpe:2.3:a:broadcom:unicenter_tng:2.2
-
cpe:2.3:a:broadcom:unicenter_tng:2.4
-
cpe:2.3:a:broadcom:unicenter_tng:2.4.2
-
cpe:2.3:a:ca:etrust_admin:2.1
-
cpe:2.3:a:ca:etrust_admin:2.4
-
cpe:2.3:a:ca:etrust_admin:2.7
-
cpe:2.3:a:ca:etrust_admin:2.9
-
cpe:2.3:a:ca:unicenter_asset_management:4.0
-
cpe:2.3:a:ca:unicenter_enterprise_job_manager:1.0
-
cpe:2.3:a:ca:unicenter_management:4.0
-
cpe:2.3:a:ca:unicenter_management:4.1
-
cpe:2.3:a:ca:unicenter_management:5.0
-
cpe:2.3:a:ca:unicenter_management:5.0.1
-
cpe:2.3:a:ca:unicenter_software_delivery:4.0
-
cpe:2.3:a:ca:unicenter_tng:2.2