Description
Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port (1) 6070 or (2) 6050.
Affected products
- Broadcom / brightstor_enterprise_backup10.0 – 10.0
- Broadcom / brightstor_enterprise_backup10.5 – 10.5
- ca / brightstor_arcserve_backup9.0.1 – 9.0.1
- ca / brightstor_arcserve_backup9.0_1 – 9.0_1
- ca / brightstor_arcserve_backup11.0 – 11.0
- ca / brightstor_arcserve_backup11.0 – 11.0
- ca / brightstor_arcserve_backup11.1 – 11.1
- ca / brightstor_arcserve_backup11.1 – 11.1
- ca / brightstor_arcserve_backup_agent9.0.1 – 9.0.1
- ca / brightstor_arcserve_backup_agent9.0.1 – 9.0.1
- ca / brightstor_arcserve_backup_agent9.0.1 – 9.0.1
- ca / brightstor_arcserve_backup_agent11 – 11
- ca / brightstor_arcserve_backup_agent11.0 – 11.0
- ca / brightstor_arcserve_backup_agent11.0 – 11.0
- ca / brightstor_arcserve_backup_agent11.1 – 11.1
- ca / brightstor_arcserve_backup_agent11.1 – 11.1
- ca / brightstor_arcserve_backup_agent11.1 – 11.1
- ca / brightstor_enterprise_backup_agent10.0 – 10.0
- ca / brightstor_enterprise_backup_agent10.0 – 10.0
- ca / brightstor_enterprise_backup_agent10.0 – 10.0
- ca / brightstor_enterprise_backup_agent10.5 – 10.5
- ca / brightstor_enterprise_backup_agent10.5 – 10.5
- ca / brightstor_enterprise_backup_agent10.5 – 10.5
References
- MISChttp://www.kb.cert.org/vuls/id/279774
- MISChttp://www.securityfocus.com/bid/14453
- MISChttp://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33239
- MISChttp://www.idefense.com/application/poi/display?id=287&type=vulnerabilities&flashstatus=true
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/21656