PT-2012-4404 · Ca · Ca Arcserve Backup

Matteo Memelli

·

Publicado

2012-10-20

·

Atualizado

2021-04-07

·

CVE-2012-2971

CVSS v2.0

7.5

Alta

VetorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions CA ARCserve Backup versions r12.5 through r16
Description The issue is related to the server in CA ARCserve Backup not properly processing RPC requests. This allows remote attackers to execute arbitrary code or cause a denial of service via a crafted request.
Recommendations For CA ARCserve Backup versions r12.5 through r16, update to a version that properly processes RPC requests to prevent remote attackers from executing arbitrary code or causing a denial of service.

Correção

RCE

DoS

Code Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-94

Identificadores relacionados

CVE-2012-2971

Produtos afetados

Ca Arcserve Backup