Description
LGSERVER.EXE in BrightStor ARCserve Backup for Laptops & Desktops r11.1 allows remote attackers to cause a denial of service (daemon crash) via a value of 0xFFFFFFFF at a certain point in an authentication negotiation packet, which results in an out-of-bounds read.
Affected products
- Broadcom / brightstor_arcserve_backup_laptops_desktops11.0 – 11.0
- Broadcom / brightstor_arcserve_backup_laptops_desktops11.1 – 11.1
- Broadcom / brightstor_arcserve_backup_laptops_desktops11.1 – 11.1
- Broadcom / business_protection_suite2.0 – 2.0
- Broadcom / desktop_management_suite11.0 – 11.0
- Broadcom / desktop_management_suite11.1 – 11.1
- Broadcom / desktop_protection_suite2.0 – 2.0
- ca / business_protection_suite2.0 – 2.0
- ca / business_protection_suite2.0 – 2.0