OSVDB ID: 13814

Title: CA BrightStor ARCserve Backup Discovery Service SERVICEPC Remote Overflow

Info

Disclosure

Feb 12, 2005

Discovery

Unknown

Dates

Exploit

Feb 12, 2005

Solution

Feb 19, 2005

Description

A buffer overflow exists in ARCserve Backup. The Discovery Service fails to validate packets received on TCP port 41523 resulting in a buffer overflow. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Patch / RCS
Exploit: Exploit Public, Exploit Commercial
Disclosure: Vendor Verified, Uncoordinated Disclosure

Solution

Upgrade to version r11.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

CA	BrightStor ARCserve Backup	r11.1
		9.0
		11

References

Bugtraq ID: 12536
Related OSVDB ID: 13613
Metasploit ID: 13814
Secunia Advisory ID: 14293
ISS X-Force ID: 19320
CVE ID: 2005-2535 (see also: NVD)
Milw0rm: 815
Exploit Database: 815
CERT VU: 966880
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-02/0123.html
http://archives.neohapsis.com/archives/bugtraq/2005-02/0141.html
http://archives.neohapsis.com/archives/bugtraq/2005-02/0144.html
http://archives.neohapsis.com/archives/bugtraq/2005-02/0201.html
Vendor Specific Solution URL: http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO64496&startsearch=1 [ Link is 404 ]
Vendor Specific Advisory URL: http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=32478
Generic Exploit URL: http://www.saintcorporation.com/cgi-bin/exploit_info/brightstor_arcserve_discovery

Credit

Cybertronic -

Direct URL: http://osvdb.org/13814