| VID |
23136 |
| Severity |
40 |
| Port |
6070 |
| Protocol |
TCP |
| Class |
Daemon |
| Detailed Description |
The BrightStor ARCServe MSSQL Backup Agent seems to be vulnerable to a buffer overflow vulnerability. Computer Associates' BrightStor ARCserve Backup versions 9.01, 11, and r11.1 and Enterprise Backup versions 10.0 and 10.5 for Microsoft Windows are vulnerable to a remote stack-based buffer overflow vulnerability, caused by improper bounds checking performed on data sent to ports 6070 and 6050. A remote attacker could exploit this vulnerability to either crash the agent or to overflow the buffer and execute arbitrary code with SYSTEM privileges.
* References:
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33239
http://www.ciac.org/ciac/bulletins/p-263.shtml
http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0064.html
http://www.idefense.com/application/poi/display?id=287&type=vulnerabilities&flashstatus=true
http://www.kb.cert.org/vuls/id/279774
http://www.kb.cert.org/vuls/id/966880
* Platforms Affected:
Computer Associates, Inc., BrightStor ARCserve Backup for Windows 9.01
Computer Associates, Inc., BrightStor ARCserve Backup for Windows r11.0
Computer Associates, Inc., BrightStor ARCserve Backup for Windows r11.1
Computer Associates, Inc., BrightStor Enterprise Backup for Windows v10.0
Computer Associates, Inc., BrightStor Enterprise Backup for Windows v10.5
Microsoft Windows Any version |
| Recommendation |
Apply the appropriate patch for your system, as listed in the Computer Associates Vulnerability ID: 33239 at http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33239 |
| Related URL |
CVE-2005-1272 (CVE) |
| Related URL |
14453 (SecurityFocus) |
| Related URL |
21656 (ISS) |
|
