[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Full-disclosure] CA BrightStor ARCserve Backup Mediasvr.exevulnerability

To: "Williams, James K" <James.Williams@xxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: Re: [Full-disclosure] CA BrightStor ARCserve Backup Mediasvr.exevulnerability
From: "Morning Wood" <se_cur_ity@xxxxxxxxxxx>
Date: Fri, 30 Mar 2007 18:36:57 -0700

>
> If you discover a vulnerability in CA products, please report
> your findings to vuln at ca dot com, or utilize our "Submit a
> Vulnerability" form at
> http://www3.ca.com/securityadvisor/vulninfo/submit.aspx.

Looks like a vuln is found once a week in C.A products
esp in you Backup and Anti-Viri products.

3 are listed currently on your own page
http://www3.ca.com/securityadvisor/vulninfo/

and um...
http://www3.ca.com/securityadvisor/vulninfo/search.aspx?mode=tmc&pst="computer%20associates";


tired of seeing C.A. exploits!!!
especially the corporate products,

 your clients must thank you for providing remote access in EVERY PROGRAM 
YOU RELEASE
( i know the blackhats do )
please delete these products from your catalog.
m.w


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

References:
- [Full-disclosure] CA BrightStor ARCserve Backup Mediasvr.exe vulnerability
  - From: Williams, James K

Prev by Date: Re: [Full-disclosure] 0-day ANI vulnerability in Microsoft Windows(CVE-2007-0038)
Next by Date: Re: [Full-disclosure] [WEB SECURITY] Preventing Cross-site Request Forgeries [ASP.NET crowd]
Previous by thread: [Full-disclosure] CA BrightStor ARCserve Backup Mediasvr.exe vulnerability
Next by thread: [Full-disclosure] On-going Internet Emergency and Domain Names
Index(es):
- Date
- Thread