CA.BrightStor.ARCserve.Backup.caloggerd.Arbitrary.File.Write
Description
This indicates an attempt to exploit a path-traversal vulnerability in BrightStor ARCServe Backup.
The vulnerability is caused by a parameter-check error in the caloggerd daemon. It allows a remote attacker to add arbitrary content to the victim's system by sending a special parameter.
Affected Products
CA BrightStor ARCServe Backup 11.0
CA BrightStor ARCServe Backup 11.1
CA BrightStor ARCServe Backup 11.5
Impact
System compromise: remote code execution.
Recommended Actions
Apply the latest update from the vendor at the following website:
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=176798
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |