13 matches found
CVE-2007-2139
CVE-2007-2139 is a real vulnerability affecting CA BrightStor ARCserve Media Server (and related BrightStor ARCserve Backup/Enterprise components). Connected sources describe a stack-based buffer overflow in the MediaSrv SUN RPC handling caused by insufficient boundary checks when processing craf...
CVE-2006-6379
CVE-2006-6379 affects the BrightStor ARCserve Backup Discovery Service. A buffer overflow in the ASBRDCST.DLL discovery component allows remote attackers to execute arbitrary code via specially crafted packets sent to the Discovery Service. Affected products include BrightStor ARCserve Backup (r1...
CVE-2008-4398
CVE-2008-4398 affects CA ARCserve Backup Tape Engine (asdbapi.dll) on Windows r11.1–r12.0. The issue is insufficient input validation in the Tape Engine service, allowing a remote attacker to trigger a denial-of-service (crash) by sending a crafted RPC message. Public advisories from CA identify ...
CVE-2006-0307
The CVE-2006-0307 issue affects the CA DM Deployment Common Component (DMPrimer) used in several CA products: BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops (r11.0, r11.1, r11.1 SP1), Unicenter Remote Control 6.x, CA Desktop Protection Suite r2, CA Server Protect...
CVE-2006-5143
CVE-2006-5143 affects Computer Associates BrightStor ARCserve Backup and related Protection Suite products. The vulnerabilities are buffer overflows in multiple components: the Backup Agent RPC Server (DBASVR.exe) via RPC opcodes 0x01/0x02/0x18 on TCP 6071; the Message Engine RPC Server (msgeng.e...
CVE-2008-4397
CVE-2008-4397 is a directory traversal flaw in the RPC interface (asdbapi.dll) of CA ARCserve Backup (BrightStor ARCserve Backup) versions r11.1–r12.0. An unauthenticated remote attacker can craft RPC calls (opnum 0x10A) to traverse directories and execute arbitrary commands. Multiple connected s...
CVE-2006-0306
The CVE-2006-0306 vulnerability affects the DM Primer (dmprimer.exe) within the DM Deployment Common Component used by CA BrightStor Mobile Backup r4.0, CA BrightStor ARCserve Backup for Laptops & Desktops r11.0–r11.1 SP1, Unicenter Remote Control 6.0–6.0 SP1, and CA Desktop/Server Protection Sui...
CVE-2008-4399
CA ARCserve Backup DB Engine vulnerability CVE-2008-4399 affects the asdbapi.dll database engine service in CA ARCserve Backup r11.1–r12.0. The issue stems from insufficient validation of remote RPC requests, allowing remote unauthenticated attackers to cause a denial of service (crash) of the DB...
CVE-2008-4400
CVE-2008-4400 affects CA ARCserve Backup (BrightStor ARCserve Backup) r11.1–r12.0. The vulnerability is in asdbapi.dll and stems from insufficient validation of authentication credentials, allowing remote attackers to cause a denial of service by crashing multiple services. Remediation is availab...
CVE-2007-5331
CVE-2007-5331 affects CA BrightStor ARCserve Backup and BrightStor Enterprise Backup. The vulnerability lies in queue.dll used by the message queuing service (LQserver.exe), where a malformed ONRPC request for operation 0x76 can cause memory corruption in lqserver/media services, enabling remote ...
CVE-2007-5329
CVE-2007-5329 describes a memory corruption vulnerability in CA BrightStor ARCserve Backup components (notably dbasvr.exe and related RPC/server processes) across multiple versions (v9.01 through R11.5, and Enterprise Backup r10.5). The root cause is memory corruption during processing of RPC/arg...
CVE-2008-2241
CA ARCserve Backup caloggerd directory traversal (CVE-2008-2241) affects ARCserve Backup r11.0, r11.1 and r11.5. The root cause is insufficient path verification when processing log messages, allowing a remote attacker to append data to arbitrary files via directory traversal sequences, potential...
CVE-2007-5326
CA BrightStor ARCserve Backup contains multiple remote vulnerabilities (CVE-2007-5326 among others) due to RPC string/buffer overflows in components such as RPC and rpcx.dll. A remote attacker could potentially execute arbitrary code on affected systems (Windows platforms) by manipulating RPC inp...