CA BrightStor ARCserve Backup Message Engine/Tape Engine Remote Buffer Overflow Vulnerability
BID:22005
Info
CA BrightStor ARCserve Backup Message Engine/Tape Engine Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 22005 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-0169 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 11 2007 12:00AM |
| Updated: | Feb 08 2007 12:18AM |
| Credit: | Tenable Network Security is credited with discovering this issue. |
| Vulnerable: |
Computer Associates Server Protection Suite r2 Computer Associates Business Protection Suite for Microsoft SBS Std Ed r2 Computer Associates Business Protection Suite for Microsoft SBS Pre ed r2 Computer Associates Business Protection Suite r2 Computer Associates BrightStor ARCServe Backup 11.5 Computer Associates BrightStor ARCServe Backup 11.1 Computer Associates BrightStor ARCServe Backup 9.01 Computer Associates BrightStor ARCServe Backup 11.5.SP1 Computer Associates BrightStor ARCServe Backup 11 Computer Associates BrightStor ARCServe Backup 10.5 |
| Not Vulnerable: | |
Discussion
CA BrightStor ARCserve Backup Message Engine/Tape Engine Remote Buffer Overflow Vulnerability
Computer Associates BrightStor ARCserve Backup is affected by a remote buffer-overflow vulnerability because the application fails to perform proper bounds-checking on data supplied to the application.
A remote attacker may exploit this issue to execute arbitrary code on a vulnerable computer with SYSTEM privileges. Failed exploit attempts may cause denial-of-service conditions. Successful exploits can lead to a complete compromise of affected computers.
This issue affects multiple BrightStor ARCserve Backup application agents and the base product.
Computer Associates BrightStor ARCserve Backup is affected by a remote buffer-overflow vulnerability because the application fails to perform proper bounds-checking on data supplied to the application.
A remote attacker may exploit this issue to execute arbitrary code on a vulnerable computer with SYSTEM privileges. Failed exploit attempts may cause denial-of-service conditions. Successful exploits can lead to a complete compromise of affected computers.
This issue affects multiple BrightStor ARCserve Backup application agents and the base product.
Exploit / POC
CA BrightStor ARCserve Backup Message Engine/Tape Engine Remote Buffer Overflow Vulnerability
An exploit is available through Core Impact.
The following exploits are available:
An exploit is available through Core Impact.
The following exploits are available:
Solution / Fix
CA BrightStor ARCserve Backup Message Engine/Tape Engine Remote Buffer Overflow Vulnerability
Solution:
The vendor released a security advisory and fixes to address this issue. Please see the references for more information.
Solution:
The vendor released a security advisory and fixes to address this issue. Please see the references for more information.
References
CA BrightStor ARCserve Backup Message Engine/Tape Engine Remote Buffer Overflow Vulnerability
References:
References:
- BrightStor ARCserve Backup Product Page (Computer Associates)
- CA BrightStor Tape Engine exploit for Windows Vista (Core Security)
- Important Security Notice for BrightStor ARCserve Backup (Computer Associates)
- ZDI-07-003 - CA BrightStor ARCserve Backup Message Engine Buffer Overflow Vulner (ZDI)
- ZDI-07-004: CA BrightStor ARCserve Backup Tape Engine Buffer Overflow Vulnerabil (ZDI)
- [CAID 34955, 34956, 34957, 34958, 34959, 34817]: CA BrightStor ARCserve Backup M (Computer Associates)
- ZDI-07-003: CA BrightStor ARCserve Backup Message Engine Buffer Overflow Vulnera ([email protected])
- ZDI-07-004: CA BrightStor ARCserve Backup Tape Engine Buffer Overflow Vulnerabil (ZDI)
- 34958 - CA BrightStor ARCserve Backup Message Engine buffer overflow vulnerabili (Computer Associates)