CA ARCserve Backup Discovery服务远程拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1115062 漏洞类型 数字错误
发布时间 2008-04-24 更新时间 2008-06-18
CVE编号 CVE-2008-1979 CNNVD-ID CNNVD-200804-393
漏洞平台 Windows CVSS评分 5.0
|漏洞来源
https://www.exploit-db.com/exploits/31707
https://www.securityfocus.com/bid/28927
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200804-393
|漏洞详情
BrightStorARCserveBackup可为各种平台的服务器提供备份和恢复保护功能。ARCserveBackup在处理包含畸形数据的请求时存在漏洞,如果远程攻击者向监听在41523端口上的CAARCserveDiscovery服务(casdscvc)发送了包含畸形指示位置数据的恶意请求报文的话,就可能导致越界内存读取,服务会崩溃,但进程会在1分钟后左右自动重启。
|漏洞EXP
source: http://www.securityfocus.com/bid/28927/info

Computer Associates ARCserve Backup is affected by a denial-of-service vulnerability because the application mishandles malformed user-supplied input.

A remote attacker may exploit this issue to cause denial-of-service conditions.

CA ARCserve Backup 12.0.5454.0 is affected by this issue; other versions may also be vulnerable. 

https://github.com/offensive-security/exploit-database-bin-sploits/raw/master/bin-sploits/31707.zip
|受影响的产品
Computer Associates Server Protection Suite r2 SP1 Computer Associates Server Protection Suite r2 Computer Associates Protection Suites r2 0 Computer Associates BrightStor ARCServe Backup 11.1
|参考资料

来源:SECTRACK
名称:1020324
链接:http://www.securitytracker.com/id?1020324
来源:BID
名称:28927
链接:http://www.securityfocus.com/bid/28927
来源:BUGTRAQ
名称:20080618CAARCserveBackupDiscoveryServiceDenialofServiceVulnerability
链接:http://www.securityfocus.com/archive/1/archive/1/493430/100/0/threaded
来源:VUPEN
名称:ADV-2008-1354
链接:http://www.frsirt.com/english/advisories/2008/1354
来源:SECUNIA
名称:29855
链接:http://secunia.com/advisories/29855
来源:MISC
链接:http://aluigi.altervista.org/adv/carcbackazz-adv.txt