Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2008-2241
HistoryMay 21, 2008 - 1:24 p.m.

CVE-2008-2241

2008-05-2113:24:00
CWE-22
mitre
web.nvd.nist.gov
21
cve-2008-2241
directory traversal vulnerability
ca brightstor arcserve backup
remote attackers
code execution

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.2

Confidence

Low

EPSS

0.331

Percentile

97.1%

JSON

Directory traversal vulnerability in caloggerd in CA BrightStor ARCServe Backup 11.0, 11.1, and 11.5 allows remote attackers to append arbitrary data to arbitrary files via directory traversal sequences in unspecified input fields, which are used in log messages. NOTE: this can be leveraged for code execution in many installation environments by writing to a startup file or configuration file.

Affected configurations

Nvd
Node
broadcombrightstor_arcserve_backupMatch11.1
OR
broadcombrightstor_arcserve_backupMatch11.5
OR
broadcomserver_protection_suiteMatch2
OR
cabrightstor_arcserve_backupMatch11.0
OR
cabrightstor_arcserve_backupMatchr11.0
OR
cabusiness_protection_suiteMatch2.0microsoft_small_business_server_premium
OR
cabusiness_protection_suiteMatch2.0microsoft_small_business_server_standard
VendorProductVersionCPE
broadcombrightstor_arcserve_backup11.1cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
broadcombrightstor_arcserve_backup11.5cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:*:*:*:*:*:*:*
broadcomserver_protection_suite2cpe:2.3:a:broadcom:server_protection_suite:2:*:*:*:*:*:*:*
cabrightstor_arcserve_backup11.0cpe:2.3:a:ca:brightstor_arcserve_backup:11.0:*:*:*:*:*:*:*
cabrightstor_arcserve_backupr11.0cpe:2.3:a:ca:brightstor_arcserve_backup:r11.0:*:*:*:*:*:*:*
cabusiness_protection_suite2.0cpe:2.3:a:ca:business_protection_suite:2.0:*:microsoft_small_business_server_premium:*:*:*:*:*
cabusiness_protection_suite2.0cpe:2.3:a:ca:business_protection_suite:2.0:*:microsoft_small_business_server_standard:*:*:*:*:*

Related

zdi 1
cvelist 1
prion 1
nvd 1
securityvulns 3
nessus 1
seebug 1
zdi
zdi
CA BrightStor ARCserve Backup caloggerd Arbitrary File Writing Vulnerability
2008-05-19 00:00:00
cvelist
cvelist
CVE-2008-2241
2008-05-21 10:00:00
prion
prion
Directory traversal
2008-05-21 13:24:00
nvd
nvd
CVE-2008-2241
2008-05-21 13:24:00
securityvulns
securityvulns
ZDI-08-027: CA BrightStor ARCserve Backup Arbitrary File Writing Vulnerability
2008-05-20 00:00:00
CA ARCserve Backup caloggerd and xdr Functions Vulnerabilities
2008-05-20 00:00:00
CA BrightStor ARCserve Backup multiple security vulnerabilities
2008-05-20 00:00:00
nessus
nessus
CA BrightStor ARCserve Backup Multiple Vulnerabilities (QO92996)
2008-05-22 00:00:00
seebug
seebug
CA ARCserve Backup caloggerdๅ’Œxdrๅ‡ฝๆ•ฐ็›ฎๅฝ•้ๅŽ†ๅŠๆ ˆๆบขๅ‡บๆผๆดž
2008-05-21 00:00:00

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.2

Confidence

Low

EPSS

0.331

Percentile

97.1%

JSON
Related for CVE-2008-2241
zdi1cvelist1prion1nvd1securityvulns3nessus1seebug1