Vulnerability CVE-2008-1329


Published: 2008-04-07   Modified: 2012-02-12

Description:
Unspecified vulnerability in the NetBackup service in CA ARCserve Backup for Laptops and Desktops r11.0 through r11.5, and Suite 11.1 and 11.2, allows remote attackers to execute arbitrary commands, related to "insufficient verification of file uploads."

See advisories in our WLB2 database:
Topic
Author
Date
High
CA ARCserve Backup for Laptops and Desktops Server and CA Desktop Management Suite Multiple Vulnerabilities
Dyon Balding
07.04.2008

Type:

CWE-noinfo

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete
Affected software
Computer associates -> Arcserve backup laptops and desktops 
Computer associates -> Desktop management suite 
CA -> Desktop management suite 

 References:
http://securityreason.com/securityalert/3800
http://www.securityfocus.com/archive/1/490463/100/0/threaded
http://www.securityfocus.com/bid/28616
http://www.securitytracker.com/id?1019788
http://www.vupen.com/english/advisories/2008/1104/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/41642
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=173105

Copyright 2024, cxsecurity.com

 

Back to Top