CVE-2011-3011

Name of the Vulnerable Software and Affected Versions CA ARCserve D2D version r15

Description The issue concerns improper session handling in BaseServiceImpl.class, allowing remote attackers to obtain credentials and execute arbitrary commands via unspecified vectors.

Recommendations For CA ARCserve D2D version r15, consider restricting access to the BaseServiceImpl.class until a patch is available. As a temporary workaround, review and strengthen session handling mechanisms to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.