Signature Detail
This site is deprecated. Please CLICK HERE for latest updates
Short Name |
APP:CA:ARCSRV:SQL-OF |
|---|---|
Severity |
Major |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Computer Associates BrightStor ARCserve Backup Buffer Overflow |
Release Date |
2016/02/11 |
Update Number |
2644 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
APP: Computer Associates BrightStor ARCserve Backup Buffer Overflow
This signature detects an overly large chunk of data sent to a Computer Associates BrightStor SQL Agent. By sending a sufficiently large block of information to the agent, an attacker can execute arbitrary code on the server.
Extended Description
Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port (1) 6070 or (2) 6050.
Affected Products
- Ca brightstor_arcserve_backup 11.0
- Ca brightstor_arcserve_backup 11.0 (:oracle)
- Ca brightstor_arcserve_backup 11.0 (:windows)
- Ca brightstor_arcserve_backup 11.1
- Ca brightstor_arcserve_backup 11.1 (:oracle)
- Ca brightstor_arcserve_backup 11.1 (:windows)
- Ca brightstor_arcserve_backup 9.0_1
- Ca brightstor_arcserve_backup 9.0.1
- Ca brightstor_arcserve_backup 9.0_1 (:oracle)
- Ca brightstor_arcserve_backup 9.0.1 (:windows)
- Ca brightstor_arcserve_backup_agent 11
- Ca brightstor_arcserve_backup_agent 11.0
- Ca brightstor_arcserve_backup_agent 11.0 (:sap)
- Ca brightstor_arcserve_backup_agent 11.0 (:sql)
- Ca brightstor_arcserve_backup_agent 11.1
- Ca brightstor_arcserve_backup_agent 11.1 (:exchange)
- Ca brightstor_arcserve_backup_agent 11.1 (:sap)
- Ca brightstor_arcserve_backup_agent 11.1 (:sql)
- Ca brightstor_arcserve_backup_agent 11 (:exchange)
- Ca brightstor_arcserve_backup_agent 9.0.1
- Ca brightstor_arcserve_backup_agent 9.0.1 (:exchange)
- Ca brightstor_arcserve_backup_agent 9.0.1 (:sap)
- Ca brightstor_arcserve_backup_agent 9.0.1 (:sql)
- Ca brightstor_enterprise_backup 10.0
- Ca brightstor_enterprise_backup 10.5
- Ca brightstor_enterprise_backup_agent 10.0
- Ca brightstor_enterprise_backup_agent 10.0 (:oracle)
- Ca brightstor_enterprise_backup_agent 10.0 (:sap)
- Ca brightstor_enterprise_backup_agent 10.0 (:sql)
- Ca brightstor_enterprise_backup_agent 10.5
- Ca brightstor_enterprise_backup_agent 10.5 (:oracle)
- Ca brightstor_enterprise_backup_agent 10.5 (:sap)
- Ca brightstor_enterprise_backup_agent 10.5 (:sql)
References