Alias(es)CA.BrightStor.ARCserve.Backup.Buffer.Overflow.B |
Release DateFeb 08, 2007 |
Severitycritical |
ImpactArbitrary code execution. |
DescriptionComputer Associates BrightStor ARCserve Backup is prone to a remote stack-based buffer overflow vulnerability because the application fails to properly check the bounds of user-supplied data prior to copying it to an insufficiently sized buffer.A successful exploit will allow an attacker to execute arbitrary code with system level privileges. |
Affected ProductsComputer Associates BrightStor ARCserve Backup Laptop & Desktop 11.1Computer Associates BrightStor ARCserve Backup Laptop & Desktop 11.0 Computer Associates BrightStor ARCserve Backup Laptop & Desktop 11.1 SP1 |
Recommended ActionsThe vendor has released fixes to address this issue. |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2007-0449 |
Reference/shttp://www.securityfocus.com/bid/22340 (BugTraq)http://www.securityfocus.com/bid/22342 (BugTraq) http://www.frsirt.com/english/advisories/2007/0314 (FrSIRT) |
