CA ARCserve Backup Network Service Network Request Parsing Remote DoS

This script is Copyright (C) 2012-2016 Tenable Network Security, Inc.


Synopsis :

The remote service is affected by a denial of service vulnerability.

Description :

According to its version, the installation of CA ARCserve Backup on
the remote host allows a remote attacker to cause a denial of service
condition via a specially crafted network request.

Note that this plugin cannot detect if the patch correcting this issue
for r12.0 or r15 SP1 (build 6300) has been applied.

See also :

http://www.nessus.org/u?aea9f62d
http://seclists.org/fulldisclosure/2012/Mar/237

Solution :

Either apply the appropriate patch as described in the vendor advisory
referenced above, or upgrade to CA ARCserve Backup r12.5 SP2 / r16 SP1
or later.

Risk factor :

Medium / CVSS Base Score : 5.0
(CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P)
CVSS Temporal Score : 4.1
(CVSS2#E:F/RL:OF/RC:C)
Public Exploit Available : true

Family: Windows

Nessus Plugin ID: 58607 ()

Bugtraq ID: 52655

CVE ID: CVE-2012-1662

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now