CVE-2006-5143

critical

Description

Multiple buffer overflows in CA BrightStor ARCserve Backup r11.5 SP1 and earlier, r11.1, and 9.01; BrightStor ARCserve Backup for Windows r11; BrightStor Enterprise Backup 10.5; Server Protection Suite r2; and Business Protection Suite r2 allow remote attackers to execute arbitrary code via crafted data on TCP port 6071 to the Backup Agent RPC Server (DBASVR.exe) using the RPC routines with opcode (1) 0x01, (2) 0x02, or (3) 0x18; invalid stub data on TCP port 6503 to the RPC routines with opcode (4) 0x2b or (5) 0x2d in ASCORE.dll in the Message Engine RPC Server (msgeng.exe); (6) a long hostname on TCP port 41523 to ASBRDCST.DLL in the Discovery Service (casdscsvc.exe); or unspecified vectors related to the (7) Job Engine Service.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/29364

http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34693

http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=94397&id=90744

http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=93775&id=90744

http://www.zerodayinitiative.com/advisories/ZDI-06-031.html

http://www.zerodayinitiative.com/advisories/ZDI-06-030.html

http://www.vupen.com/english/advisories/2006/3930

http://www.tippingpoint.com/security/advisories/TSRT-06-11.html

http://www.securityfocus.com/bid/20365

http://www.securityfocus.com/archive/1/447930/100/200/threaded

http://www.securityfocus.com/archive/1/447927/100/200/threaded

http://www.securityfocus.com/archive/1/447926/100/200/threaded

http://www.securityfocus.com/archive/1/447862/100/100/threaded

http://www.securityfocus.com/archive/1/447848/100/100/threaded

http://www.securityfocus.com/archive/1/447847/100/200/threaded

http://www.securityfocus.com/archive/1/447839/100/100/threaded

http://www.lssec.com/advisories/LS-20060330.pdf

http://www.lssec.com/advisories/LS-20060313.pdf

http://www.lssec.com/advisories/LS-20060220.pdf

http://www.kb.cert.org/vuls/id/860048

http://www.kb.cert.org/vuls/id/361792

http://supportconnectw.ca.com/public/storage/infodocs/basbr-secnotice.asp

http://securitytracker.com/id?1017006

http://securitytracker.com/id?1017005

http://securitytracker.com/id?1017004

http://securitytracker.com/id?1017003

http://secunia.com/advisories/22285

Details

Source: Mitre, NVD

Published: 2006-10-10

Updated: 2024-11-21

Risk Information

CVSS v2

Base Score: 7.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Severity: High

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical