APP: CA ARCserve D2D Axis2 Default Credentials Remote Code Execution
This signature detects attempts to exploit a known vulnerability in CA ARCserve D2D Axis2. A successful attack can leverage this vulnerability to upload a malicious web service to a target system, enabling arbitrary code execution within the security context of the server.
Extended Description
The 'Axis2' component of Computer Associates ARCserve D2D is prone to a vulnerability that allows attackers to bypass certain security restrictions. An attacker can exploit this issue to bypass certain security restrictions and gain access to the application. Successfully exploiting this issue will allow attackers to execute arbitrary code with SYSTEM-level privileges, completely compromising the computer. Computer Associates ARCserve D2D r15 is vulnerable. Other products from multiple vendors that embed the 'Axis2' component may also be affected.
Affected Products
Computer_associates arcserve_d2d
Short Name
APP:CA:ARCSRV:D2D-AXIS2-RCE
Severity
Major
Recommended
False
Recommended Action
Drop
Category
APP
Keywords
ARCserve Axis2 CA CVE-2010-0219 Code Credentials D2D Default Execution Remote bid:45625
Release Date
05/29/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Computer_associates
CVSS Score
10.0