Visit our newest sister site!
Hundreds of free aircraft flight manuals
Civilian • Historical • Military • Declassified • FREE!


TUCoPS :: Security App Flaws :: c07-1849.htm

Computer Associates BrightStor ARCserve Backup Remote Code Execution Vulnerability



LS-20061002 - Computer Associates BrightStor ARCserve Backup Remote Code Execution Vulnerability
LS-20061002 - Computer Associates BrightStor ARCserve Backup Remote Code Execution Vulnerability



LS-20061002

LSsec has discovered a vulnerability in Computer Associates BrightStor ARCserve Backup v11.5, which could be exploited by an anonymous attacker in order to execute arbitrary code with SYSTEM privileges on an affected system. The flaw specifically exists within the Tape Engine (tapeeng.exe) due to incorrect handling of RPC requests on TCP port 6502. The interface is identified by
62b93df0-8b02-11ce-876c-00805f842837. Opnum 191 specifies the vulnerable operation within this interface.

Technical details:

http://www.lssec.com/advisories.html 

LSsecurity - LSsec.com


TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH