|
|
|
|
| |
Credit:
The information has been provided by iDefense Labs Security Advisories.
The original article can be found at: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=598
|
| |
Vulnerable Systems:
* ARCServe Backup for Laptops and Desktops version R11.1 Build 900
This vulnerability specifically exists since the command handlers that service network requests do not check to see if the peer is authenticated.
Analysis:
Exploitation of this vulnerability allows an attacker to execute all commands granted to the server administrator. An attacker can add and delete users and entire organizations, and initiate restore operations for clients that connect to the server.
Using this vulnerability, an attacker is able to upload arbitrary files to the server. This results in the execution of arbitrary code with SYSTEM privileges.
Vendor response:
Computer Associates has addressed this vulnerability with an update. For more information consult CA's security notice at the following URL. http://supportconnectw.ca.com/public/sams/lifeguard/infodocs/caarcservebld-securitynotice.asp
CVE Information:
CVE-2007-5006
Disclosure Timeline:
03/06/2007 - Initial vendor notification
03/06/2007 - Initial vendor response
09/20/2007 - Coordinated public disclosure
|
|
|
|
|
