Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:CA:ARCSRV:BKP-LGSERVER-BO |
|---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
CA BrightStor ARCServe Backup LGServer Buffer Overflow |
Release Date |
2007/02/15 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
APP: CA BrightStor ARCServe Backup LGServer Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Computer Associates BrightStor ARCServe Backup LGServer. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the system.
Extended Description
Computer Associates BrightStor ARCServe BackUp is prone to multiple unspecified buffer-overflow vulnerabilities. The vendor has reported that these vulnerabilities allow remote attackers to execute arbitrary code with SYSTEM privileges facilitating a full compromise. Unsuccessful attacks may cause denial-of-service conditions as well. These issues affect BrightStor ARCserve Backup for laptops and desktops running Microsoft Windows.
Affected Products
- Computer_associates arcserve_backup_for_laptops_and_desktops 11.0
- Computer_associates arcserve_backup_for_laptops_and_desktops 11.1
- Computer_associates arcserve_backup_for_laptops_and_desktops 11.1 SP1
- Computer_associates brightstor_mobile_backup 4.0
- Computer_associates business_protection_suite 2.0
- Computer_associates business_protection_suite_for_microsoft_sbs_pre_ed r2
- Computer_associates business_protection_suite_for_microsoft_sbs_std_ed r2
- Computer_associates desktop_management_suite 11.1
- Computer_associates desktop_protection_suite 2.0
References
- BugTraq: 22340
- BugTraq: 22199
- CVE: CVE-2007-0449
- URL: http://www.securityfocus.com/archive/1/458644
- URL: http://www3.ca.com/securityadvisor/vulninfo/Vuln.aspx?ID=34993