Stack-based buffer overflow in the Discovery Service for BrightStor ARCserve Backup 11.1 and earlier allows remote attackers to execute arbitrary code via a long packet to UDP port 41524, which is not properly handled in a recvfrom call.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Brightstor_arcserve_backup | Broadcom | 11.1 (including) | 11.1 (including) |
References
- http://secunia.com/advisories/14183
- http://securitytracker.com/id?1013138
- http://supportconnectw.ca.com/public/enews/BrightStor/brigcurrent.asp#news1
- http://www.idefense.com/application/poi/display?id=194\u0026type=vulnerabilities
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19251
- http://secunia.com/advisories/14183
- http://securitytracker.com/id?1013138
- http://supportconnectw.ca.com/public/enews/BrightStor/brigcurrent.asp#news1
- http://www.idefense.com/application/poi/display?id=194\u0026type=vulnerabilities
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19251