CA BrightStor ARCserve Backup Multiple Vulnerabilities (QO84983)

This script is Copyright (C) 2007-2015 Tenable Network Security, Inc.


Synopsis :

The remote software is affected by multiple vulnerabilities.

Description :

According to its version, the installation of BrightStor ARCserve
Backup on the remote host is affected by multiple buffer overflows
that can be exploited by an unauthenticated, remote attacker to execute
arbitrary code on the affected host with SYSTEM privileges.

See also :

http://www.nessus.org/u?e175e643
http://www.nessus.org/u?543ab108
http://www.securityfocus.com/archive/1/456711/30/0/threaded
http://www.nessus.org/u?25216527

Solution :

Apply the appropriate patch as described in the vendor advisory.

Risk factor :

Critical / CVSS Base Score : 10.0
(CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C)
CVSS Temporal Score : 8.3
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 24015 (arcserve_qo84983.nasl)

Bugtraq ID: 21221
22005
22006
22010
22015
22016

CVE ID: CVE-2006-5171
CVE-2006-5172
CVE-2006-6076
CVE-2006-6917
CVE-2007-0168
CVE-2007-0169

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now