CA.ARCserve.Backup.Discovery.Service.DoS
Description
This indicates an attempt to exploit a denial-of-service vulnerability in CA ARCserve Backup Discovery service.
The vulnerability is by an input-validation error in casdscsvc.exe. A remote unauthenticated attacker may crash the target server by sending a malformed message.
Affected Products
Computer Associates Server Protection Suite r2 SP1
Computer Associates Server Protection Suite r2
Computer Associates Protection Suites r2 0
Computer Associates BrightStor ARCServe Backup 11.1
Computer Associates BrightStor ARCServe Backup 11.5.SP3
Computer Associates BrightStor ARCServe Backup 11.5.SP2
Computer Associates BrightStor ARCServe Backup 11.5.SP1
Computer Associates BrightStor ARCServe Backup 11.5
Computer Associates ARCserve Backup 12.0.5454 .0
Impact
Denial of Service
Recommended Actions
Apply the appropriate patches:
CA ARCserve Backup r12.0 Windows (QO99574):
CA ARCserve Backup r11.5 Windows:
Apply QO99129 (11.5 SP4) or QO99575.
CA ARCserve Backup r11.1 Windows (QO99576):
CA ARCserve Backup r11.1 Netware (QO99579):
CA Protection Suites r2 (QO99575):
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |