{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"CA Protection Suites r3 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Brightstor ARCserve Client agent pour Windows.","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"Brightstor ARCserve Backup v9.01 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Brightstor ARCserve Backup r10.5 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Brightstor ARCserve Backup r11.1 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Brightstor ARCserve Backup r11.5 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"CA Threat Manager for the Enterprise r8 ;","product":{"name":"N/A","vendor":{"name":"Microsoft","scada":false}}},{"description":"Brightstor ARCserve Backup r11 pour Windows ;","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 identifi\u00e9es dans les produits CA.\nCelles-ci sont dues \u00e0 des mauvaises validations de donn\u00e9es re\u00e7ues par\ncertaines proc\u00e9dures RPC du Alert Notification Server alert.exe. Ces\nfailles permettent \u00e0 une personne malintentionn\u00e9e distante d'effectuer\ndes d\u00e9bordements de m\u00e9moire, et donc de causer un d\u00e9ni de service ou\nd'ex\u00e9cuter du code arbitraire.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[{"name":"CVE-2007-3825","url":"https://www.cve.org/CVERecord?id=CVE-2007-3825"}],"links":[],"reference":"CERTA-2007-AVI-315","revisions":[{"description":"version initiale.","revision_date":"2007-07-18T00:00:00.000000"}],"risks":[{"description":"D\u00e9ni de service \u00e0 distance"},{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"De multiples vuln\u00e9rabilit\u00e9s dans les produits CA permettent \u00e0 une\npersonne malintentionn\u00e9e distante d'effectuer un d\u00e9ni de service ou\nd'ex\u00e9cuter du code arbitraire.\n","title":"Multiples vuln\u00e9rabilit\u00e9s dans les produits CA","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 CA du 17 juillet 2007","url":"http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-secnotice.asp"}]}