Intrusion Prevention

CA.BrightStor.ARCserve.Discovery.Service.Buffer.Overflow

Description

This indicates an attempt to exploit a buffer overflow in ARCserver Backup.
The ARCserver Backup server has a buffer overflow vulnerability. A remote attacker could execute arbitrary code on a vulnerable system with system privileges via a specially crafted packet sent to the Discovery Service.

Affected Products

Computer Associates: BrightStor ARCserve Backup r11.1
Computer Associates: BrightStor ARCserve Backup r11.5 SP1 and prior
Computer Associates: BrightStor ARCserve Backup v9.01
Computer Associates: CA Business Protection Suite r2
Computer Associates: CA Business Protection Suite for MS Premium Edition r2
Computer Associates: CA Business Protection Suite for MS Standard Edition r2
Computer Associates: CA Server Protection Suite r2
Computer Associates, Inc.: BrightStor ARCserve Backup for Windows r11 Computer Associates, Inc.: BrightStor Enterprise Backup r10.5

Impact

System compromise.

Recommended Actions

Apply patch (QO81201, QO84609, QI82917, QO84611, or QO84610), available from the Web site:
http://supportconnect.ca.com

CVE References

CVE-2006-6379 CVE-2006-5143