CA.BrightStor.ARCserve.Backup.Message.0x2F.RPC.Code.Execution
Description
This indicates an attack attempt against a heap overflow vulnerability in
CA multiple products.
The vulnerability is caused by an error in ASCORE.dll when the vulnerable software handles a malicious request sent through RPC opcode 43 and 45. It allows a remote attacker to execute arbitrary code via sending a crafted RPC packet.
Affected Products
Computer Associates Server Protection Suite r2
Computer Associates Business Protection Suite r2
Computer Associates BrightStor Enterprise Backup 10.5
Computer Associates BrightStor ARCServe Backup 11.5
Computer Associates BrightStor ARCServe Backup 9.01
Impact
System Comprise:Remote attackers can gain control of the vulnerable system.
Recommended Actions
Refer to the vendor's web site for suggested workground.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |