View my documents ()
 Home > Support > Global Security Advisor 

Vulnerability Detail

Computer Associates BrightStor ARCserve Backup Agents buffer overflow vulnerability

Date Discovered:
2 Aug 2005

Date Published:
2 Aug 2005

Last Updated:
22 Aug 2005

Threat Assessment

Overall Risk:  High
Popularity : Medium
Impact:  Critical
Simplicity:  Medium

Characteristics

Vulnerability ID:  33239
Discovered By:  iDEFENSE

Exploitable Locally:  No
Exploitable Remotely:  Yes

Impact:  Remote attackers can execute arbitrary code or cause a denial of service condition.

Root Cause:  Software Vulnerability

Description
Recommendations
Affected Technologies
References
 

Description

Computer Associates BrightStor ARCserve Backup system contains a buffer overflow vulnerability that may allow remote attackers to execute arbitrary code or cause a denial of service condition. The vulnerability exists in several BrightStor ARCserve Backup Agents, such as BrightStor ARCserve Backup Agent for Microsoft SQL server, and is due to improper bounds checking performed on data sent to ports 6070 and 6050. Remote attackers can exploit this vulnerability to either crash the agent or to overflow the buffer and execute arbitrary code with SYSTEM privileges.

Back to top

Recommendations



-------------------------------------------------------------------------------
For: BrightStor ARCserve Backup (BAB) r11.1 Agent for Microsoft Exchange Premium Add-on for Windows, BrightStor ARCserve Backup (BAB) r11.1 Agent for SQL for Windows, BrightStor ARCserve Backup r11.1 Agent for Oracle for Windows, BrightStor ARCserve Backup r11.1 Agent for SAP R/3 for Windows, BrightStor ARCserve Backup Release 11 Agent for Microsoft Exchange Premium Add-on for Windows, BrightStor ARCserve Backup Release 11 Agent for Oracle for Windows, BrightStor ARCserve Backup Release 11 Agent for SAP R/3 for Windows, BrightStor ARCserve Backup Release 11 Agent for SQL for Windows, BrightStor ARCserve Backup Version 9 Agent for Oracle for Windows, BrightStor ARCserve Backup Version 9 Agent for SAP R/3 for Windows, BrightStor ARCserve Backup Version 9 Agent for SQL for Windows, BrightStor Enterprise Backup v10.0 Agent for Oracle for Windows, BrightStor Enterprise Backup v10.0 Agent for SAP R.3 for Oracle and SQL on Windows, BrightStor Enterprise Backup v10.0 Agent for SQL for Windows, BrightStor Enterprise Backup v10.5 Agent for Oracle for EMC Timefinder for Windows, BrightStor Enterprise Backup v10.5 Agent for Oracle for Windows, BrightStor Enterprise Backup v10.5 Agent for SAP R/3 for NT/2000, BrightStor Enterprise Backup v10.5 Agent for SQL for Windows, BrightStor Enterprise Backup v10.5 Serverless Backup Agent for Oracle for Windows

Install patches provided by the vendor:



BrightStor ARCserve Backup r11.1 for Windows:

http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO71010&startsearch=1



BrightStor ARCserve Backup r11.0 for Windows:

http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70769&startsearch=1



BrightStor ARCserve Backup v9.01 for Windows:

http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70770&startsearch=1



BrightStor Enterprise Backup v10.5 for Windows:

http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70774&startsearch=1



BrightStor Enterprise Backup v10.0 for Windows:

http://supportconnect.ca.com/sc/solcenter/solresults.jsp?aparno=QO70773&startsearch=1

Back to top

Affected Technologies

Computer Associates: BrightStor ARCserve Backup (BAB) r11.1 Agent for Microsoft Exchange Premium Add-on for Windows
Computer Associates: BrightStor ARCserve Backup (BAB) r11.1 Agent for SQL for Windows
Computer Associates: BrightStor ARCserve Backup r11.1 Agent for Oracle for Windows
Computer Associates: BrightStor ARCserve Backup r11.1 Agent for SAP R/3 for Windows
Computer Associates: BrightStor ARCserve Backup Release 11 Agent for Microsoft Exchange Premium Add-on for Windows
Computer Associates: BrightStor ARCserve Backup Release 11 Agent for Oracle for Windows
Computer Associates: BrightStor ARCserve Backup Release 11 Agent for SAP R/3 for Windows
Computer Associates: BrightStor ARCserve Backup Release 11 Agent for SQL for Windows
Computer Associates: BrightStor ARCserve Backup Version 9 Agent for Oracle for Windows
Computer Associates: BrightStor ARCserve Backup Version 9 Agent for SAP R/3 for Windows
Computer Associates: BrightStor ARCserve Backup Version 9 Agent for SQL for Windows
Computer Associates: BrightStor Enterprise Backup v10.0 Agent for Oracle for Windows
Computer Associates: BrightStor Enterprise Backup v10.0 Agent for SAP R.3 for Oracle and SQL on Windows
Computer Associates: BrightStor Enterprise Backup v10.0 Agent for SQL for Windows
Computer Associates: BrightStor Enterprise Backup v10.5 Agent for Oracle for EMC Timefinder for Windows
Computer Associates: BrightStor Enterprise Backup v10.5 Agent for Oracle for Windows
Computer Associates: BrightStor Enterprise Backup v10.5 Agent for SAP R/3 for NT/2000
Computer Associates: BrightStor Enterprise Backup v10.5 Serverless Backup Agent for Oracle for Windows
Computer Associates: CA Brightstor Enterprise Backup v10.5 Agent for SQL for Windows

Back to top

References

Mitre CVE: CAN-2005-1272

Back to top

CA Global Security Advisor

Current threat condition: Low
Low
Documents and Tools
Find Threats
Viruses Spyware
Vulnerabilities All
 
 
Page Tools
ShareShare