Vulnerability Name:

CVE-2005-1272 (CCN-21656)

Assigned:2005-08-02
Published:2005-08-02
Updated:2021-04-07
Summary:Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port (1) 6070 or (2) 6050.
CVSS v3 Severity:7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: Full-Disclosure Mailing List, Tue Aug 02 2005 - 14:09:58 CDT
CAID 33239 - Computer Associates BrightStor ARCserve/Enterprise Backup Agents buffer overflow vulnerability

Source: MITRE
Type: CNA
CVE-2005-1272

Source: CCN
Type: CA SupportConnect Web site
Fix: Q071010 QO70767

Source: CCN
Type: CIAC Information Bulletin P-263
BrightStor ARCserve for MS SQL Server Buffer Overflow

Source: CCN
Type: iDEFENSE Security Advisory 08.02.05
CA BrightStor ARCserve Backup Agent for MS SQL Server Buffer Overflow

Source: IDEFENSE
Type: UNKNOWN
20050803 CA BrightStor ARCserve Backup Agent for MS SQL Server Buffer Overflow

Source: CCN
Type: US-CERT VU#279774
Computer Associates BrightStor ARCserve Backup Agents vulnerable to buffer overflow

Source: CERT-VN
Type: Patch, Third Party Advisory, US Government Resource
VU#279774

Source: CCN
Type: OSVDB ID: 18501
CA BrightStor ARCserve Backup Agent for Windows Long String Overflow

Source: BID
Type: Exploit, Patch
14453

Source: CCN
Type: BID-14453
Computer Associates BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability

Source: CCN
Type: Computer Associates Vulnerability Information Center
Computer Associates BrightStor ARCserve Backup Agents buffer overflow vulnerability

Source: CONFIRM
Type: Patch
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33239

Source: CCN
Type: BrightStor ARCserve Backup Web page
BrightStor ARCserve Backup

Source: XF
Type: UNKNOWN
brightstor-enterprise-backup-bo(21656)

Source: XF
Type: UNKNOWN
brightstor-enterprise-backup-bo(21656)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:ca:brightstor_arcserve_backup:9.0.1:*:windows:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup:9.0_1:*:oracle:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup_agent:9.0.1:*:sap:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup_agent:9.0.1:*:sql:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_enterprise_backup_agent:10.5:*:sap:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_enterprise_backup_agent:10.5:*:sql:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup:11.1:*:oracle:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup:11.1:*:windows:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup_agent:11:*:exchange:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup_agent:9.0.1:*:exchange:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_enterprise_backup_agent:10.0:*:sql:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_enterprise_backup_agent:10.5:*:oracle:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup:11.0:*:oracle:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup:11.0:*:windows:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup_agent:11.1:*:sap:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup_agent:11.1:*:sql:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_enterprise_backup_agent:10.0:*:oracle:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_enterprise_backup_agent:10.0:*:sap:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup_agent:11.0:*:sap:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup_agent:11.0:*:sql:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup_agent:11.1:*:exchange:*:*:*:*:*
  • OR cpe:/a:broadcom:brightstor_enterprise_backup:10.0:*:*:*:*:*:*:*
  • OR cpe:/a:broadcom:brightstor_enterprise_backup:10.5:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:ca:brightstor_arcserve_backup:11.1::windows:*:*:*:*:*
  • OR cpe:/a:ca:brightstor_arcserve_backup:11.0::windows:*:*:*:*:*
  • OR cpe:/a:broadcom:brightstor_enterprise_backup:10.5:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    ca brightstor arcserve backup 9.0.1
    ca brightstor arcserve backup 9.0_1
    ca brightstor arcserve backup agent 9.0.1
    ca brightstor arcserve backup agent 9.0.1
    ca brightstor enterprise backup agent 10.5
    ca brightstor enterprise backup agent 10.5
    ca brightstor arcserve backup 11.1
    ca brightstor arcserve backup 11.1
    ca brightstor arcserve backup agent 11
    ca brightstor arcserve backup agent 9.0.1
    ca brightstor enterprise backup agent 10.0
    ca brightstor enterprise backup agent 10.5
    ca brightstor arcserve backup 11.0
    ca brightstor arcserve backup 11.0
    ca brightstor arcserve backup agent 11.1
    ca brightstor arcserve backup agent 11.1
    ca brightstor enterprise backup agent 10.0
    ca brightstor enterprise backup agent 10.0
    ca brightstor arcserve backup agent 11.0
    ca brightstor arcserve backup agent 11.0
    ca brightstor arcserve backup agent 11.1
    broadcom brightstor enterprise backup 10.0
    broadcom brightstor enterprise backup 10.5
    ca brightstor arcserve backup 11.1
    ca brightstor arcserve backup 11.0
    ca brightstor enterprise backup 10.5