|
CA ARCserve Backup Multiple Vulnerabilities
|
|
|
|
|
Secunia Advisory:
|
SA30300
|
|
|
Release Date:
|
2008-05-20
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
System access
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | BrightStor ARCserve Backup 11.x
BrightStor ARCserve Backup 11.x (for Windows)
CA Server Protection Suite r2
|
| | CVE reference: | CVE-2008-2241 (Secunia mirror)
CVE-2008-2242 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
Some vulnerabilities have been reported in CA ARCserve Backup, which can be exploited by malicious people to compromise a vulnerable system.
1) An input validation error within the logging service (caloggerd) can be exploited to append arbitrary data to arbitrary files via directory traversal attacks.
2) Boundary errors in certain xdr functions (e.g. "xdr_rwsstring()") can be exploited to cause stack-based buffer overflows.
Successful exploitation of the vulnerabilities allows execution of arbitrary code.
The vulnerabilities affect the following products:
* CA ARCserve Backup r11.5 (formerly BrightStor ARCserve Backup r11.5)
* CA ARCserve Backup r11.1 (formerly BrightStor ARCserve Backup r11.1)
* CA ARCserve Backup r11.0 (formerly BrightStor ARCserve Backup r11.0)
* CA Server Protection Suite r2
* CA Business Protection Suite r2
* CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2
* CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution:
Apply patches. Please see the vendor's advisory for more information.
Provided and/or discovered by:
Independently discovered by:
* Damian Put, reported via ZDI
* An anonymous researcher, reported via iDefense Labs
Original Advisory:
CA:
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=176798
ZDI:
http://www.zerodayinitiative.com/advisories/ZDI-08-027/
http://www.zerodayinitiative.com/advisories/ZDI-08-026/
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
27 Related Secunia Security Advisories, displaying 10
|
|
|
1. CA ARCserve Backup Discovery Service Denial of Service
|
|
2. CA Products Alert Notification Server Multiple Vulnerabilities
|
|
3. CA Products Ingres User Authentication Security Issue
|
|
4. CA BrightStor ARCServe Backup Multiple Vulnerabilities
|
|
5. CA Products CHM and RAR File Processing Denial of Service Vulnerabilities
|
|
6. CA Products Alert Notification Server Multiple Buffer Overflows
|
|
7. CA Products Ingres Database Vulnerabilities
|
|
8. CA Anti-Virus Engine CAB Archive Processing Buffer Overflows
|
|
9. CA BrightStor ARCserve Backup Two Denial of Service Vulnerabilities
|
|
10. CA BrightStor ARCserve Backup Media Server Multiple Buffer Overflows
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
