CA.BrightStor.ARCserve.Backup.MediaSVR

NameCA.BrightStor.ARCserve.Backup.MediaSVR.EXE.Buffer.Overflow
Alias/esCA.BrightStor.ARCserve.Backup.MediaSVR.EXE.191.Buffer.Overflow
Last Updated DateSep 02, 2008
Release DateMay 17, 2007
SeverityHigh
ImpactSystem compromise: Remote attackers can gain control of vulnerable systems.
DescriptionThis indicates a possible exploit of a buffer-overflow vulnerability in CA BrightStor ARCserve Backup.

This flaw is due to an input-validation error in the "Mediasvr.exe" service when processing a malformed RPC request. Successful exploitation could allow remote attackers to execute arbitrary code.
Affected ProductsComputer Associates Server Protection Suite r2
Computer Associates Business Protection Suite for Microsoft SBS Std Ed r2
Computer Associates Business Protection Suite for Microsoft SBS Pre ed r2
Computer Associates Business Protection Suite 2.0
Computer Associates BrightStor Enterprise Backup 10.5
Computer Associates BrightStor ARCServe Backup for Windows 11.0
Computer Associates BrightStor ARCServe Backup 11.5
Computer Associates BrightStor ARCServe Backup 11.1
Computer Associates BrightStor ARCServe Backup 9.01
Computer Associates BrightStor ARCServe Backup 11.5.SP2
Computer Associates BrightStor ARCServe Backup 11.5.SP1
Computer Associates BrightStor ARCServe Backup 11.5
Computer Associates BrightStor ARCServe Backup 11.5
Recommended ActionsApply the patch, available from the vendor's web site:
http://supportconnectw.ca.com/public/storage/infodocs/babmedser-secnotice.asp
Common Vulnerabilities and Exposures (CVE)http://cve.mitre.org/cgi-bin/cvename.cgi?name=2007-1785
Reference/shttp://www.securityfocus.com/bid/23209 (BugTraq)
http://www.vupen.com/english/advisories/2007/1161 (FrSIRT)
Reference: VID-14539