PT-2008-2919 · Ca · Ca Arcserve Backup For Laptops/Desktops+1

Dyon Balding

Published

2008-04-07

Updated

2021-04-08

CVE-2008-1328

CVSS v2.0

9.3

High

Vector

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions CA ARCserve Backup for Laptops and Desktops versions r11.0 through r11.5 CA ARCserve Backup Suite versions 11.1 and 11.2

Description The issue is related to a buffer overflow in the LGServer service, which allows remote attackers to execute arbitrary code via unspecified command arguments.

Recommendations For CA ARCserve Backup for Laptops and Desktops versions r11.0 through r11.5, update to a version outside of this range to resolve the issue. For CA ARCserve Backup Suite versions 11.1 and 11.2, update to a version outside of this range to resolve the issue. As a temporary workaround, consider restricting access to the LGServer service until a patch is available.

Fix

Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-119

Related Identifiers

CVE-2008-1328

Affected Products

Ca Arcserve Backup Suite

Ca Arcserve Backup For Laptops/Desktops

PT-2008-2919 · Ca · Ca Arcserve Backup For Laptops/Desktops+1

CVE-2008-1328

Weakness Enumeration

Related Identifiers

Affected Products

References · 8