APP: CA Multiple Products DBASVR RPC Server Pointer Buffer Overflow
There exists a buffer overflow vulnerability in multiple CA products. The problem specifically exists within DBASVR.exe, the Backup Agent RPC Server. The vulnerability is due to failing to bound check user supplied data in certain RPC requests. A remote unauthenticated attacker can exploit this vulnerability by sending a specially crafted RPC request to the affected interface. Successful exploitation would may lead to arbitrary code injection and execution with the privileges of the server process, typically System. An attack targeting this vulnerability can result in the injection and execution of code. If code execution is successful, the behaviour of the target will depend on the intention of the attacker. Any code injected will be executed with SYSTEM privileges on the targeted host. In the case of an unsuccessful code execution attack, CA DBASVR RPC Server will be terminated.
Extended Description
Unspecified vulnerability in dbasvr in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, has unknown impact and attack vectors related to memory corruption.
Affected Products
Broadcom server_protection_suite
Short Name
APP:CA:DBA-SVR-POINT
Severity
Major
Recommended
True
Recommended Action
Drop
Category
APP
Keywords
Buffer CA CVE-2007-5329 DBASVR Multiple Overflow Pointer Products RPC Server bid:26015
Release Date
06/14/2015
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3590
Port
TCP/6071
False Positive
Unknown
Vendors
Ca
Broadcom
CVSS Score
10.0