Lucene search

SAINT CorporationSAINT:F839711C33B5CB1F577B76838DCF5687

HistoryApr 19, 2006 - 12:00 a.m.

BrightStor ARCserve Backup discovery service buffer overflow

2006-04-1900:00:00

SAINT Corporation

download.saintcorporation.com

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.154 Low

EPSS

Percentile

95.8%

JSON

Added: 04/19/2006
CVE: CVE-2005-2535
BID: 12536
OSVDB: 13814

Background

The BrightStor ARCserve Backup server includes a discovery service which listens on ports 41523/TCP and 41524/UDP.

Problem

A buffer overflow in the discovery service allows remote attackers to execute arbitrary commands.

Resolution

Apply the patch which is available from Computer Associates.

References

<http://www.kb.cert.org/vuls/id/966880>

Platforms

Windows

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.154 Low

EPSS

Percentile

95.8%

JSON

Related for SAINT:F839711C33B5CB1F577B76838DCF5687