CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
98.7%
Directory traversal vulnerability in the RPC interface (asdbapi.dll) in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote attackers to execute arbitrary commands via a … (dot dot) in an RPC call with opnum 0x10A.
Vendor | Product | Version | CPE |
---|---|---|---|
broadcom | arcserve_backup | r12.0 | cpe:2.3:a:broadcom:arcserve_backup:r12.0:*:*:*:*:*:*:* |
broadcom | business_protection_suite | r2 | cpe:2.3:a:broadcom:business_protection_suite:r2:*:*:*:*:*:*:* |
broadcom | server_protection_suite | r2 | cpe:2.3:a:broadcom:server_protection_suite:r2:*:*:*:*:*:*:* |
ca | arcserve_backup | r11.1 | cpe:2.3:a:ca:arcserve_backup:r11.1:*:*:*:*:*:*:* |
ca | arcserve_backup | r11.5 | cpe:2.3:a:ca:arcserve_backup:r11.5:*:*:*:*:*:*:* |
ca | business_protection_suite | r2 | cpe:2.3:a:ca:business_protection_suite:r2:*:microsoft_small_business_server_premium:*:*:*:*:* |
ca | business_protection_suite | r2 | cpe:2.3:a:ca:business_protection_suite:r2:*:microsoft_small_business_server_standard:*:*:*:*:* |
secunia.com/advisories/32220
securityreason.com/securityalert/4412
www.securityfocus.com/archive/1/497218
www.securityfocus.com/archive/1/497281/100/0/threaded
www.securityfocus.com/bid/31684
www.securitytracker.com/id?1021032
www.vupen.com/english/advisories/2008/2777
exchange.xforce.ibmcloud.com/vulnerabilities/45774
support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=188143
More