Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:20723
HistoryOct 15, 2008 - 12:00 a.m.

[Full-disclosure] Assurent VR - CA ARCserve Backup DB Engine Denial of Service

2008-10-1500:00:00
vulners.com
30
JSON

CA ARCserve Backup DB Engine Denial of Service

Assurent ID: FSC20081009-12

  1. Affected Software

CA ARCserve Backup 11.1 Windows
CA ARCserve Backup 11.5 Windows
CA ARCserve Backup 12.0 Windows

Reference: http://www.ca.com/us/data-loss-prevention.aspx

  1. Vulnerability Summary

A vulnerability has been discovered in the DB Engine component of CA
ARCserve Backup. Insufficient input validation when processing remote
procedure call (RPC) requests is the cause of this vulnerability.

  1. Vulnerability Analysis

A remote unauthenticated attacker can exploit this vulnerability by sending
a crafted message to the target server on TCP port 6504. A successful attack
could cause a denial of service condition for the DB Engine.

  1. Vulnerability Detection

Assurent has confirmed the vulnerability in:

CA ARCserve Backup 11.1 Windows
CA ARCserve Backup 11.5 Windows
CA ARCserve Backup 12.0 Windows

  1. Workaround

Apply the vendor patch or block communication from untrusted networks to TCP
port 6504.

  1. Vendor Response

CA has released a bulletin addressing this vulnerability.

Reference:
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=188143

  1. Disclosure Timeline

2008-05-29 Reported to vendor
2008-05-29 Initial vendor response
2008-10-09 Coordinated public disclosure

  1. Credits

Vulnerability Research Team, Assurent Secure Technologies, a TELUS company

  1. References

CVE: CVE-2008-4399
Vendor: 188143

  1. About Assurent VRS

Assurent's Vulnerability Research Service (VRS) for security product
vendors, and Threat Protection Programs (TPP) for MSPs and enterprise
security teams, help to eliminate the significant costs incurred by security
product vendors, MSPs, and enterprise security teams in responding to and
managing critical new security vulnerabilities and other threats including
worm & virus outbreaks and other malware. The VRS and TPP services are
real-time feeds providing subscribers with detailed analysis of the top
security vulnerabilities, focused on the specific needs of each group of
customers.

http://www.assurent.com/index.php?id=17

Related

checkpoint_advisories 2
prion 1
cve 1
securityvulns 2
exploitpack 1
checkpoint_advisories
checkpoint_advisories
CA ARCserve Backup DB Engine Denial of Service - Ver2 (CVE-2008-4399)
2014-12-28 00:00:00
CA ARCserve Backup DB Engine Denial of Service - Ver2 (CVE-2008-4399)
2014-12-28 00:00:00
prion
prion
Input validation
2008-10-14 21:10:00
cve
cve
CVE-2008-4399
2008-10-14 21:10:00
securityvulns
securityvulns
CA ARCserve Backup Multiple Vulnerabilities
2008-10-12 00:00:00
CA ARCserve Backup multiple security vulnerabilities
2008-10-15 00:00:00
exploitpack
exploitpack
CA-ArcServe
2008-06-12 00:00:00
JSON
Related for SECURITYVULNS:DOC:20723
checkpoint_advisories2prion1cve1securityvulns2exploitpack1