[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
LS-20060220 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: LS-20060220 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability
- From: advisories@xxxxxxxxx
- Date: 7 Oct 2006 07:11:43 -0000
Overview:
LSsec has discovered a vulnerability in Computer Associates BrightStor ARCserve
Backup, which could be exploited by an anonymous attacker in order to execute
arbitrary code with SYSTEM privileges on an affected system. The flaw
specifically exists within the Discovery Service (casdscsvc.exe) due to
incorrect handling of requests on TCP port 41523.
Advisory:
http://www.lssec.com/advisories/LS-20060220.pdf