Secunia Logo  
 Vulnerability InformationVulnerability ScanningCommunityBlog - new entry!Corporate InformationOnline ShopCustomer Login  
 Secunia AdvisoriesSecunia ResearchBinary Analysis  
Home > Vulnerability Information > Secunia Advisories > CVE-2006-5143
Secunia Advisories
Advisories
Search
Advisories by Product
Advisories by Vendor
Historic Advisories
Mailing Lists
Report Vulnerability
Contact Form
Business Solutions Restricted
Partner Solutions Restricted
About


Secunia PSI WorldMap 		 
CVE Reference: CVE-2006-5143
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2006-5143

Description:
Multiple buffer overflows in CA BrightStor ARCserve Backup r11.5 SP1 and earlier, r11.1, and 9.01; BrightStor ARCserve Backup for Windows r11; BrightStor Enterprise Backup 10.5; Server Protection Suite r2; and Business Protection Suite r2 allow remote attackers to execute arbitrary code via crafted data on TCP port 6071 to the Backup Agent RPC Server (DBASVR.exe) using the RPC routines with opcode (1) 0x01, (2) 0x02, or (3) 0x18; invalid stub data on TCP port 6503 to the RPC routines with opcode (4) 0x2b or (5) 0x2d in ASCORE.dll in the Message Engine RPC Server (msgeng.exe); (6) a long hostname on TCP port 41523 to ASBRDCST.DLL in the Discovery Service (casdscsvc.exe); or unspecified vectors related to the (7) Job Engine Service.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/29364

ST
  1017006
  1017005
  1017004
  1017003

SAID
  Secunia Advisory: SA22285

MISC
  http://www.lssec.com/advisories/LS-20060330.pdf
  http://www.lssec.com/advisories/LS-20060313.pdf
  http://www.zerodayinitiative.com/advisories/ZDI-06-030.html
  http://www.zerodayinitiative.com/advisories/ZDI-06-031.html
  http://www.lssec.com/advisories/LS-20060220.pdf
  http://www.tippingpoint.com/security/advisories/TSRT-06-11.html

CONFIRM
  http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=94397&id=90744
  http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34693
  http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=93775&id=90744
  http://supportconnectw.ca.com/public/storage/infodocs/basbr-secnotice.asp

CERT-VN
  361792
  860048

BUGTRAQ
  http://www.securityfocus.com/archive/1/archive/1/447926/100/200/threaded
  http://www.securityfocus.com/archive/1/archive/1/447930/100/200/threaded
  http://www.securityfocus.com/archive/1/archive/1/447927/100/200/threaded
  http://www.securityfocus.com/archive/1/archive/1/447839/100/100/threaded
  http://www.securityfocus.com/archive/1/archive/1/447847/100/200/threaded
  http://www.securityfocus.com/archive/1/archive/1/447848/100/100/threaded
  http://www.securityfocus.com/archive/1/archive/1/447862/100/100/threaded

BID
  20365


Return to the previous page.


Contact | Terms & Conditions and Copyright | Report Vulnerability | Press | Jobs (open positions) | About Secunia
Copyright Secunia 2002-2009