APP: CA ARCserve Backup Authentication Service Denial of Service

This signature detects attempts to exploit a known vulnerability against CA ARCserve. A successful attack can result in a denial-of-service condition.

Extended Description

The (1) server and (2) agent components in CA ARCserve Backup r12.5, r15, and r16 on Windows do not properly validate RPC requests, which allows remote attackers to cause a denial of service (service crash) via a crafted request.

References

CVE: CVE-2012-2972

Short Name
APP:CA:ARCSRV:BCKUP-AUTHSRV-DOS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
ARCserve Authentication Backup CA CVE-2012-2972 Denial Service of
Release Date
01/07/2013
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3650
Port
TCP/1024-3127,3129-7999,8001-8079,8081-65535
False Positive
Unknown
CVSS Score

5.0

Found a potential security threat?