CA BrightStor ARCserve Backup Universal Agent Remote Overflow (QO66526)

Critical Nessus Plugin ID 18041


Arbitrary code can be executed on the remote host.


This host is running BrightStor ARCServe UniversalAgent.

The remote version of this software is affected by a buffer overflow vulnerability.

An attacker, by sending a specially crafted packet, may be able to execute code on the remote host.


Upgrade to the newest version of this software, when available

See Also

Plugin Details

Severity: Critical

ID: 18041

File Name: arcserve_universalagent_overflow.nasl

Version: 1.19

Type: remote

Agent: windows

Family: Windows

Published: 2005/04/13

Modified: 2018/03/12

Dependencies: 18040

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

Required KB Items: ARCSERVE/UniversalAgent

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2005/04/11

Exploitable With

Metasploit (CA BrightStor Universal Agent Overflow)

Reference Information

CVE: CVE-2005-1018

BID: 13102

OSVDB: 15471