Computer Associates BrightStor ARCserve Backup Multiple Remote Vulnerabilities
BID:26015
Info
Computer Associates BrightStor ARCserve Backup Multiple Remote Vulnerabilities
| Bugtraq ID: | 26015 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2007-5325 CVE-2007-5326 CVE-2007-5327 CVE-2007-5328 CVE-2007-5329 CVE-2007-5330 |
| Remote: | Yes |
| Local: | No |
| Published: | Oct 11 2007 12:00AM |
| Updated: | Dec 18 2007 08:04PM |
| Credit: | The vendor credits Dyon Balding, cocoruder of Fortinet Security, Tenable Network Security, Pedram Amini and an anonymous researcher working with the iDefense VCP with discovery of the issues. |
| Vulnerable: |
Computer Associates Server Protection Suite r2 Computer Associates Business Protection Suite for Microsoft SBS Std Ed r2 Computer Associates Business Protection Suite for Microsoft SBS Pre ed r2 Computer Associates Business Protection Suite r2 Computer Associates BrightStor Enterprise Backup 10.5 Computer Associates BrightStor ARCServe Backup for Windows 11.0 Computer Associates BrightStor ARCServe Backup 11.1 Computer Associates BrightStor ARCServe Backup 9.01 Computer Associates BrightStor ARCServe Backup 11.5 |
| Not Vulnerable: | |
Discussion
Computer Associates BrightStor ARCserve Backup Multiple Remote Vulnerabilities
Computer Associates BrightStor ARCserve is prone to multiple remote vulnerabilities, including buffer-overflow issues, memory-corruption issues, and privilege-escalation issues.
Successful exploits allow remote attackers to cause denial-of-service conditions, execute arbitrary machine code in the context of the affected application, or perform actions with elevated privileges. This may result in a complete compromise of affected computers.
The following applications are affected:
BrightStor ARCserve Backup v9.01, r11.1, r11.5, r11 for Windows
BrightStor Enterprise Backup r10.5
CA Server Protection Suite r2,
CA Business Protection Suite r2
CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2
CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2
Computer Associates BrightStor ARCserve is prone to multiple remote vulnerabilities, including buffer-overflow issues, memory-corruption issues, and privilege-escalation issues.
Successful exploits allow remote attackers to cause denial-of-service conditions, execute arbitrary machine code in the context of the affected application, or perform actions with elevated privileges. This may result in a complete compromise of affected computers.
The following applications are affected:
BrightStor ARCserve Backup v9.01, r11.1, r11.5, r11 for Windows
BrightStor Enterprise Backup r10.5
CA Server Protection Suite r2,
CA Business Protection Suite r2
CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2
CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2
Exploit / POC
Computer Associates BrightStor ARCserve Backup Multiple Remote Vulnerabilities
Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any exploits for these issues. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Computer Associates BrightStor ARCserve Backup Multiple Remote Vulnerabilities
Solution:
The vendor released an advisory and updates to address these issues. Please see the references for more information.
Solution:
The vendor released an advisory and updates to address these issues. Please see the references for more information.
References
Computer Associates BrightStor ARCserve Backup Multiple Remote Vulnerabilities
References:
References:
- BrightStor ARCserve Backup Security Notice (Computer Associates)
- CA BrightStor ARCServe BackUp Message Engine Remote Stack Overflow Vulnerability (cocoruder)
- Computer Associates Homepage (Computer Associates)
- ZDI-07-069 - CA BrightStor ARCserve Backup Message Engine Insecure Method Exposu (Zero Day Initiative)
- [CAID 35724, 35725, 35726]: CA BrightStor ARCserve Backup Multiple Vulnerabiliti ("Williams, James K"
- [UPDATE]CA BrightStor ARCServe BackUp Message Engine Remote Stack Overflow Vulne (cocoruder
- CA BrightStor ARCServe BackUp Message Engine Remote Stack Overflow Vulnerability ('hfli'
- Updated - [CAID 35724, 35725, 35726]: CA BrightStor ARCserve Backup Multiple Vul ("Williams, James K"
- ZDI-07-069: CA BrightStor ARCserve Backup Message Engine Insecure Method Exposur ([email protected])