Info

Disclosure

Nov 21, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

A remote overflow exists in BrightStor ARCserve Backup Tape Engine. The BrightStor ARCserve Backup Tape Engine uses insufficient bounds checking resulting in a stack overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Confidentiality, Loss of Integrity
Solution: Patch
Exploit: Exploit Available
Disclosure: Vendor Verified

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Computer Associates has released a patch to address this vulnerability.

Products

CA	Protection Suites	r2
	Server Protection Suite	r2
	BrightStor ARCserve Backup	r11.1
		r11 for Windows
		r10.5
		v9.01
		r11.5
	Business Protection Suite	r2

References

FrSIRT Advisory: ADV-2006-4654
Bugtraq ID: 21221
CERT VU: 437300
Generic Exploit URL: http://www.metasploit.com/svn/framework3/trunk/modules/exploits/windows/brightsto ......
ISS X-Force ID: 30453
Secunia Advisory ID: 23060
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2007-03/0209.html
http://archives.neohapsis.com/archives/fulldisclosure/2006-11/0340.html
http://archives.neohapsis.com/archives/fulldisclosure/2006-11/0346.html
http://archives.neohapsis.com/archives/vuln-dev/2007-q1/0009.html
CVE ID: 2006-6076 (see also: NVD)
Security Tracker: 1017268
Keyword: CAID 34817 LS-20061113 TCP Port 6502

Credit

Wei Wang - McAfee

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

CA

Protection Suites

Server Protection Suite

BrightStor ARCserve Backup

Business Protection Suite

References

Credit