Intrusion Prevention

CA.BrightStor.ARCserve.Backup.TADDR2UADDR.DoS

Description

This indicates an attack attempt to exploit a Denial of Service (DoS) vulnerability in the CA RPC Server service (catirpc.exe) for BrightStor ARCserve Backup, cause by a NULL pointer dereference. Vulnerable software may allow remote attackers to cause a denial of service via a crafted TADDR2UADDR request to port UDP/111.

Affected Products

Computer Associates Server Protection Suite r2
Computer Associates Protection Suites r2 0
Computer Associates Business Protection Suite for Microsoft SBS Std Ed r2
Computer Associates Business Protection Suite for Microsoft SBS Pre ed r2
Computer Associates Business Protection Suite r2
Computer Associates BrightStor Enterprise Backup 10.5
Computer Associates BrightStor ARCserve Backup for Windows (All) 11.5
Computer Associates BrightStor ARCServe Backup 11.5
Computer Associates BrightStor ARCServe Backup 11.1
Computer Associates BrightStor ARCServe Backup 9.01
Computer Associates BrightStor ARCServe Backup 11.5.SP2
Computer Associates BrightStor ARCServe Backup 11.5.SP1
Computer Associates BrightStor ARCServe Backup 11.5
Computer Associates BrightStor ARCServe Backup 11.5
Computer Associates BrightStor ARCServe Backup 11

Impact

Denial of Service: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply patch, available from the web site:
http://www3.ca.com/Solutions/ProductFamily.asp?ID=115

CVE References

CVE-2007-0816