CA.BrightStor.ARCserve.Discovery.Service.Buffer.Overflow
Description
This indicates an attempt to exploit a buffer overflow in ARCserver Backup.
The ARCserver Backup server has a buffer overflow vulnerability. A remote attacker could execute arbitrary code on a vulnerable system with system privileges via a specially crafted packet sent to the Discovery Service.
Affected Products
Computer Associates: BrightStor ARCserve Backup r11.1
Computer Associates: BrightStor ARCserve Backup r11.5 SP1 and prior
Computer Associates: BrightStor ARCserve Backup v9.01
Computer Associates: CA Business Protection Suite r2
Computer Associates: CA Business Protection Suite for MS Premium Edition r2
Computer Associates: CA Business Protection Suite for MS Standard Edition r2
Computer Associates: CA Server Protection Suite r2
Computer Associates, Inc.: BrightStor ARCserve Backup for Windows r11 Computer Associates, Inc.: BrightStor Enterprise Backup r10.5
Impact
System compromise.
Recommended Actions
Apply patch (QO81201, QO84609, QI82917, QO84611, or QO84610), available from the Web site:
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |