Computer Associates (CA) BrightStor ARCserve Backup Mediasvr RPC buffer overflow (Sunrpc_BackupProduct_BO)

About this signature or vulnerability

IBM Security Server Protection for Windows, Proventia Network MFS, Proventia Desktop, Proventia Network IDS, Proventia-G 1.1 and earlier, RealSecure Network, RealSecure Server Sensor, BlackICE PC Protection, BlackICE Server Protection, RealSecure Desktop, Proventia Network IPS, Proventia Server IPS for Linux technology, Virtual Server Protection for Vmware:

This signature looks for A malformed XDR string in unique procedures.

Default risk level

 High

Sensors that have this signature

IBM Security Server Protection for Windows: 1.0.914.1910, Proventia Network MFS: XPU 1.90, IBM Security Server Protection for Windows: 2.1.14.2400, Proventia Desktop: 1910, Proventia Network IDS: XPU 24.51, Proventia-G 1.1 and earlier: XPU 24.51, RealSecure Network: XPU 24.51, RealSecure Server Sensor: XPU 24.51, BlackICE PC Protection: 3.6cpw, BlackICE Server Protection: 3.6.cpw, RealSecure Desktop: epw, Proventia Network IPS: XPU 1.90, Proventia Server IPS for Linux technology: 1.90, Virtual Server Protection for Vmware: 1.0

Systems affected

CA BrightStor ARCserve Backup for Windows: 11, CA BrightStor Enterprise Backup: 10.5, CA BrightStor ARCserve Backup: 11.1, CA Server Protection Suite: 2, CA Business Protection Suite: 2.0, CA BrightStor ARCserve Backup: 11.5, CA BrightStor ARCserve Backup: 9.01, CA Business Protection Suite for Microsoft Small Business Server: 2 Standard, CA Business Protection Suite for Microsoft Small Business Server: 2 Premium

Type

Unauthorized Access Attempt

Vulnerability description

How to remove this vulnerability

References