BrightStor ARCserve Message Engine opnum 0x2f buffer overflow

2007-01-19T00:00:00
ID SAINT:F5D43C455C2DCCD9149E0175C2E13F89
Type saint
Reporter SAINT Corporation
Modified 2007-01-19T00:00:00

Description

Added: 01/19/2007
CVE: CVE-2007-0169
BID: 22005
OSVDB: 31318

Background

The BrightStor ARCserve Backup server runs the Message Engine RPC service on ports 6503/TCP and 6504/TCP by default.

Problem

A buffer overflow in BrightStor ARCserve Backup allows remote attackers to execute arbitrary commands by sending a specially crafted request with opnum 0x2f to the Message Engine RPC service.

Resolution

Apply the patch referenced in the Security Notice.

References

<http://www.zerodayinitiative.com/advisories/ZDI-07-003.html>
<http://www.kb.cert.org/vuls/id/180336>

Limitations

Exploit works on BrightStor ARCserve Backup r11.5 SP2.

Platforms

Windows