|
Description
|
Computer Associates BrightStor ARCserve Backup is prone to a remote stack-based buffer overflow vulnerability because the application fails to properly check the bounds of user-supplied data prior to copying it to an insufficiently sized buffer.
A successful exploit will allow an attacker to execute arbitrary code with system level privileges.
|
|
|
|
Impact
|
|
Arbitrary code execution.
|
|
|
|
Affected Products
|
Computer Associates BrightStor ARCserve Backup Laptop & Desktop 11.1
Computer Associates BrightStor ARCserve Backup Laptop & Desktop 11.0
Computer Associates BrightStor ARCserve Backup Laptop & Desktop 11.1 SP1
|
|
Aliases
|
|
References
|
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2007-0449
|
|
Recommended Actions
|
|
The vendor has released fixes to address this issue.
|
