Skip to main content

CA ARCserve Backup Multiple Vulnerabilities

Last Update Date: 1 Nov 2012 Release Date: 22 Oct 2012 4805 Views

RISK: Medium Risk

TYPE: Security software and application - Security Software & Appliance

TYPE: Security Software & Appliance

Multiple vulnerabilities have been identified in CA ARCserve Backup. A remote user can execute arbitrary code on the target system and cause denial of service conditions.

  1. A remote user can send specially crafted RPC requests to execute arbitrary code on the target system. The code will run with the privileges of the target service. Server installations are affected.
  2. A remote user can send specially crafted RPC requests to cause the target service to crash. Server and agent installations are affected.

Impact

  • Denial of Service
  • Remote Code Execution

System / Technologies affected

  • Versions r12.5, r15, r16

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.


Vulnerability Identifier


Source


Related Link