Lucene search
Immunity CanvasBRIGHTSTOR_CMDEXECHistoryOct 14, 2008 - 9:10 p.m.
Immunity Canvas: BRIGHTSTOR_CMDEXEC
2008-10-1421:10:00
Immunity Canvas
exploitlist.immunityinc.com
82
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.869 High
EPSS
Percentile
98.3%
| Name | brightstor_cmdexec |
|---|---|
| CVE | CVE-2008-4397 Exploit Pack |
| VENDOR: Computer Associates | |
| Notes: This exploit will start a TFTP server (which is why it requires root) and have the remote side download and execute a MOSDEF connectback | |
| Repeatability: Infinite | |
| Platforms Tested: | |
| References: http://archives.neohapsis.com/archives/bugtraq/2008-10/0090.html | |
| Date public: 10/11/2008 | |
| CVE Url: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4397 |
Related
packetstorm
packetstorm
cabrightstor-exec.txt
2008-10-11 00:00:00
Computer Associates ARCserve REPORTREMOTEEXECUTECML Buffer Overflow
2009-12-31 00:00:00
prion
prion
Directory traversal
2008-10-14 21:10:00
cve
cve
CVE-2008-4397
2008-10-14 21:10:00
nessus
nessus
securityvulns
securityvulns
CA BrightStor ARCServe BackUp Message Engine Remote Command Injection Vulnerability
2008-10-14 00:00:00
CA ARCserve Backup Multiple Vulnerabilities
2008-10-12 00:00:00
CA ARCserve Backup multiple security vulnerabilities
2008-10-15 00:00:00
exploitpack
exploitpack
CA-ArcServe
2008-06-12 00:00:00
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.869 High
EPSS
Percentile
98.3%
Related for BRIGHTSTOR_CMDEXEC