CA.BrightStor.ARCserve.Backup.Buffer.Overflow

description-logoDescription

Computer Associates BrightStor ARCserve Backup is prone to a remote stack-based buffer overflow vulnerability because the application fails to properly check the bounds of user-supplied data prior to copying it to an insufficiently sized buffer.
A successful exploit will allow an attacker to execute arbitrary code with system level privileges.

affected-products-logoAffected Products

Computer Associates BrightStor ARCserve Backup Laptop & Desktop 11.1
Computer Associates BrightStor ARCserve Backup Laptop & Desktop 11.0
Computer Associates BrightStor ARCserve Backup Laptop & Desktop 11.1 SP1

Impact logoImpact

Arbitrary code execution.

recomended-action-logoRecommended Actions

The vendor has released fixes to address this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-04-14 15.816 Sig Added
2019-01-17 14.526 Sig Added