| VID |
23189 |
| Severity |
40 |
| Port |
41524 |
| Protocol |
UDP |
| Class |
Daemon |
| Detailed Description |
The BrightStor Backup Discovery Service, according to its version, is vulnerable to multiple vulnerabilities (QO87569). BrightStor ARCserve Backup is an enterprise class backup program and its Discovery Service listens for broadcast packets from other BrightStor servers on the local network to learn about their existence. Multiple Computer Associates (CA) BrightStor ARCserve Backup products are vulnerable to multiple buffer overflow vulnerabilities in the Mediasrv RPC service. By sending RPC requests with specially-crafted data to the affected system, an unauthenticated remote attacker could disable the service or execute arbitrary code on the system with SYSTEM privileges.
* References:
http://supportconnectw.ca.com/public/storage/infodocs/babmedser-secnotice.asp
http://www3.ca.com/solutions/ProductFamily.aspx?ID=115
https://www.zerodayinitiative.com/advisories/ZDI-07-022.html
http://archives.neohapsis.com/archives/bugtraq/2007-03/0418.html
http://lists.grok.org.uk/pipermail/full-disclosure/2007-March/053266.html
http://www.kb.cert.org/vuls/id/151305
http://www.kb.cert.org/vuls/id/979825
http://www.frsirt.com/english/advisories/2007/1161
http://www.frsirt.com/english/advisories/2007/1529
http://securitytracker.com/alerts/2007/Mar/1017830.html
http://securitytracker.com/alerts/2007/Apr/1017952.html
http://secunia.com/advisories/24682
http://secunia.com/advisories/24972
* Platforms Affected:
Computer Associates, BrightStor ARCserve Backup r11.1
Computer Associates, CA Business Protection Suite r2
Computer Associates, CA Business Protection Suite for MS Premium Edition r2
Computer Associates, CA Business Protection Suite for MS Standard Edition r2
Computer Associates, CA Server Protection Suite r2
Computer Associates, BrightStor ARCserve Backup r11.5
Computer Associates, BrightStor ARCserve Backup r11.5 SP2
Computer Associates, BrightStor ARCserve Backup for Windows 9.01
Computer Associates, BrightStor ARCserve Backup for Windows r11
Computer Associates, BrightStor Enterprise Backup r10.5
Microsoft Windows Any version |
| Recommendation |
Apply the appropriate fix for your system (QO87569), available from the CA SupportConnect Web site at http://supportconnectw.ca.com/public/storage/infodocs/babmedser-secnotice.asp |
| Related URL |
CVE-2007-1785,CVE-2007-2139 (CVE) |
| Related URL |
23209,23635 (SecurityFocus) |
| Related URL |
33316,33854 (ISS) |
|
