CVE-2006-5143

Description

Multiple buffer overflows in CA BrightStor ARCserve Backup r11.5 SP1 and earlier, r11.1, and 9.01; BrightStor ARCserve Backup for Windows r11; BrightStor Enterprise Backup 10.5; Server Protection Suite r2; and Business Protection Suite r2 allow remote attackers to execute arbitrary code via crafted data on TCP port 6071 to the Backup Agent RPC Server (DBASVR.exe) using the RPC routines with opcode (1) 0x01, (2) 0x02, or (3) 0x18; invalid stub data on TCP port 6503 to the RPC routines with opcode (4) 0x2b or (5) 0x2d in ASCORE.dll in the Message Engine RPC Server (msgeng.exe); (6) a long hostname on TCP port 41523 to ASBRDCST.DLL in the Discovery Service (casdscsvc.exe); or unspecified vectors related to the (7) Job Engine Service.

Related CPE's

Could not find any relations

References

http://www.tippingpoint.com/security/advisories/TSRT-06-11.html

Patch

http://www.zerodayinitiative.com/advisories/ZDI-06-030.html

PatchVendor Advisory

http://supportconnectw.ca.com/public/storage/infodocs/basbr-secnotice.asp

Patch

http://www.zerodayinitiative.com/advisories/ZDI-06-031.html

Vendor Advisory

20365

1017003

1017004

1017005

1017006

http://www.lssec.com/advisories/LS-20060220.pdf

http://www.lssec.com/advisories/LS-20060313.pdf

http://www.lssec.com/advisories/LS-20060330.pdf

http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=93775&id=90744

http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=94397&id=90744

http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34693

VU#361792

US Government Resource

VU#860048

US Government Resource

22285

Vendor Advisory

ADV-2006-3930

Vendor Advisory

ca-dbasvr-rpc-bo(29364)

20061007 LS-20060313 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability

20061007 LS-20060330 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability

20061007 LS-20060220 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability

20061005 TSRT-06-11: CA Multiple Product DBASVR RPC Server Multiple Buffer Overflow Vulnerabilities

20061005 ZDI-06-031: CA Multiple Product Message Engine RPC Server Code Execution Vulnerability

20061005 ZDI-06-030: CA Multiple Product Discovery Service Remote Buffer Overflow Vulnerability

20061006 [CAID 34693, 34694]: CA BrightStor ARCserve Backup Multiple Buffer Overflow Vulnerabilities

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:L/Au:N/C:P/I:P/A:P

AccessVector

NETWORK

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

PARTIAL

IntegrityImpact

PARTIAL

AvailabilityImpact

PARTIAL

BaseScore

7.5

Created by Yello
About Severity.io