Computer Associates ARCserve Backup LDBserver Remote Code Execution Vulnerability

critical Nessus Plugin ID 69513

Synopsis

The remote host is affected by a remote code execution vulnerability.

Description

The version of CA ARCserve Backup installed in the remote hosted is affected by a remote code execution vulnerability. A remote attacker can exploit this vulnerability by providing a specially crafted handle_t argument to an RPC endpoint for the LDBserver service.

Solution

Apply the appropriate patch per the vendor's advisory.

See Also

http://www.nessus.org/u?c87e2a14

Plugin Details

Severity: Critical

ID: 69513

File Name: arcserve_backup_cve-2008-5415.nasl

Version: 1.6

Type: local

Agent: windows

Family: Windows

Published: 8/26/2013

Updated: 6/27/2018

Supported Sensors: Nessus Agent, Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 5.9

CVSS v2

Risk Factor: Critical

Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:ca:arcserve_backup

Required KB Items: SMB/Registry/Enumerated, SMB/CA ARCserve Backup/Installed

Exploit Ease: No known exploits are available

Patch Publication Date: 12/10/2008

Vulnerability Publication Date: 12/10/2008

Reference Information

CVE: CVE-2008-5415

BID: 32764