CA ARCserve Backup Multiple Vulnerabilities (CA20121018) (credentialed check)

Critical Nessus Plugin ID 62812


The remote host has a backup application installed that is affected by multiple vulnerabilities.


The version of CA ARCserve Backup installed on the remote Windows host is potentially affected by multiple vulnerabilities :

- A flaw exists with how RPC requests are processed that could lead to code execution on server installations.

- A flaw exists with how RPC requests are processed that could cause the service to crash. Note that this vulnerability affects both server and agent installations. (CVE-2012-2972)


Apply the patch referenced in the advisory.

See Also

Plugin Details

Severity: Critical

ID: 62812

File Name: arcserve_backup_ca20121018.nasl

Version: $Revision: 1.4 $

Type: local

Agent: windows

Family: Windows

Published: 2012/11/05

Modified: 2015/01/12

Dependencies: 62810, 62811

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/a:ca:arcserve_backup, cpe:/a:ca:arcserve_backup_client_agent_for_windows

Required KB Items: SMB/CA ARCserve Backup/Installed

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2012/10/18

Vulnerability Publication Date: 2012/10/18

Reference Information

CVE: CVE-2012-2971, CVE-2012-2972

BID: 56116

OSVDB: 86415, 86416

IAVB: 2012-B-0106