Vulnerability Note VU#279774
Computer Associates BrightStor ARCserve Backup Agents vulnerable to buffer overflow
Overview
Several Computer Associates BrightStor ARCserve Backup Agents contain a buffer overflow, which may allow a remote attacker to execute arbitrary code.
Description
Computer Associates BrightStor ARCserve Backup is a cross-platform backup and recovery application. Backup Agents are available to provide backup support for additional applications, such as Microsoft SQL Server, Oracle, SAP R/3, and Microsoft Exchange. The ARCserve Backup Agents fail to properly validate input, which creates a buffer overflow vulnerability. By default, the Backup Agents listen on 6070/tcp. |
Impact
A remote, unauthenticated attacker may be able to execute arbitrary code on a system running the vulnerable Backup Agent. |
Solution
Upgrade or patch |
|
Systems Affected (Learn More)
Vendor | Status | Date Notified | Date Updated |
---|---|---|---|
Computer Associates | Affected | - | 04 Aug 2005 |
CVSS Metrics (Learn More)
Group | Score | Vector |
---|---|---|
Base | N/A | N/A |
Temporal | N/A | N/A |
Environmental | N/A | N/A |
References
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33239
- http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70767&startsearch=1
- http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70769&startsearch=1
- http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70770&startsearch=1
- http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70774&startsearch=1
- http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70773&startsearch=1
- http://idefense.com/application/poi/display?id=287
- http://www.securitytracker.com/alerts/2005/Aug/1014611.html
- http://secunia.com/advisories/16316/
- http://osvdb.org/displayvuln.php?osvdb_id=18501
- http://www.securityfocus.com/bid/14453
Credit
This vulnerability was reported by Computer Associates, who in turn thank iDEFENSE for reporting the vulnerability.
This document was written by Will Dormann.
Other Information
- CVE IDs: CVE-2005-1272
- Date Public: 02 Aug 2005
- Date First Published: 03 Aug 2005
- Date Last Updated: 12 Jan 2007
- Severity Metric: 25.99
- Document Revision: 13
Feedback
If you have feedback, comments, or additional information about this vulnerability, please send us email.