CVE-2008-4400

Description

Unspecified vulnerability in asdbapi.dll in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote attackers to cause a denial of service (crash of multiple services) via crafted authentication credentials, related to "insufficient validation."

Related CPE's

acabusiness_protection_suiter2*microsoft_small_business_server_premium*****

acaarcserve_backupr11.1*******

acabusiness_protection_suiter2*microsoft_small_business_server_standard*****

acaarcserve_backupr11.5*******

abroadcomarcserve_backupr12.0*******

abroadcombusiness_protection_suiter2*******

abroadcomserver_protection_suiter2*******

References

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=188143

PatchVendor Advisory

20081009 CA ARCserve Backup Multiple Vulnerabilities

32220

Vendor Advisory

1021032

31684

ADV-2008-2777

ca-arcservebackup-authentication-dos(45777)

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:L/Au:N/C:N/I:N/A:P

AccessVector

NETWORK

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

NONE

IntegrityImpact

NONE

AvailabilityImpact

PARTIAL

BaseScore

5

Created by Yello
About Severity.io