Intrusion Prevention

CA.BrightStor.ARCserve.Backup.Multiple.Remote.Buffer.Overflow

Description

This indicates an attack attempt against multiple remote buffer-overflow vulnerabilities in Computer Associates ARCserve Backup.
This vulnerability is caused by the LGServer component's failure to validate data passed to multiple parameters resulting in a stack overflow. It allows a remote attacker to execute arbitrary code via sending a specially crafted request.

Affected Products

Computer Associates BrightStor ARCserve Backup for Laptops & Desktops 11.1

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version, available from the vendor's website:
http://www.ca.com/us/products.aspx

CVE References

CVE-2007-3216