CA ARCserve Backup Remote Code Execution (CA20121018) (uncredentialed check)
Critical Nessus Plugin ID 63146
SynopsisThe remote host has a backup application that is affected by a remote code execution vulnerability.
DescriptionThe version of CA ARCserve Backup running on the remote Windows host is potentially affected by a remote code execution vulnerability. A flaw exists with how RPC requests are processed that could lead to code execution on server installations.
In addition, a denial of service vulnerability (CVE-2012-2972) was reported for this version of CA ARCserve Backup, but Nessus has not checked for it.
SolutionApply the patch referenced in the advisory.