SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Generic)  >   CA ARCserve Backup Vendors:   CA
BrightStor ARCserve Backup for Laptops Desktops Buffer Overflows Let Remote Users Execute Arbitrary Code
SecurityTracker Alert ID:  1017548
SecurityTracker URL:  http://securitytracker.com/id/1017548
CVE Reference:   CVE-2007-0449   (Links to External Site)
Updated:  Jan 31 2007
Original Entry Date:  Jan 24 2007
Impact:   Denial of service via network, Execution of arbitrary code via network, User access via network
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 11.1 SP1 and prior versions
Description:   Several vulnerabilities were reported in BrightStor ARCserve Backup for Laptops & Desktops. A remote user can execute arbitrary code on the target system.

Several buffer overflows exist. A remote user can send specially crafted data to trigger a buffer overflow and execute arbitrary code or cause denial of service conditions on the target system. The code will run with System level privileges.

A remote user can send a specially crafted packet to the LGSERVER.EXE process on TCP port 1900 to trigger a stack overflow and execute arbitrary code with Local System privileges.

A remote user can send a specially crafted series of packets to the LGSERVER.EXE
process on TCP port 2200 to cause the process to write very large files to the system disk and become unresponsive until the file has been written.

The CA Protection Suites r2 and CA Desktop Management Suite r11.0 and r11.1 versions are also affected.

The vendor was notified on June 22, 2006.

The vendor credits NGS Software with reporting these vulnerabilities.

Impact:   A remote user can execute arbitrary code on the target system with Local System privileges.

A remote user can cause denial of service conditions.

Solution:   The vendor has issued fixed versions.

BABLD r11.1 SP2 SP2 does not contain the vulnerability, there is no fix to apply.
BABLD r11.1 SP1 - QO83833
BABLD r11.0 - QI85497
DMS r11.1 - QO85401
DMS r11.0 - QI85423
BMB r4.0 - QO85402

The CA advisory is available at:

http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp

Vendor URL:  supportconnectw.ca.com/public/sams/lifeguard/infodocs/babldimpsec-notice.asp (Links to External Site)
Cause:   Boundary error, State error
Underlying OS:  Windows (Any)

Message History:   None.


 Source Message Contents



[Original Message Not Available for Viewing]


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC