APP: CA BrightStor ARCServe Backup LGServer Stack Buffer Overflow
There exists a buffer overflow vulnerability in Computer Associates BrightStor ARCserve Backup for Laptops and Desktops. A successful attack can lead to arbitrary code execution.
Extended Description
Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobile Backup r4.0, Desktop and Business Protection Suite r2, and Desktop Management Suite (DMS) r11.0 and r11.1 allow remote attackers to execute arbitrary code via crafted packets to TCP port (1) 1900 or (2) 2200.
Affected Products
Broadcom desktop_management_suite
Short Name
APP:CA:ARCSRV:BRIGHTSTOR-BKP-BO
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
ARCServe Backup BrightStor Buffer CA CVE-2007-0449 LGServer Overflow Stack bid:22342
Release Date
06/12/2015
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3673
Port
TCP/1900
False Positive
Unknown
Vendors
Broadcom
CVSS Score
10.0