CVE-2006-6076 – CA BrightStor ARCserve - Tape Engine Buffer Overflow
https://notcve.org/view.php?id=CVE-2006-6076
Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to execute arbitrary code via certain RPC requests to TCP port 6502. Desbordamiento de búfer en Tape Engine (tapeeng.exe) en Computer Associates BrightStor ARCserve Backup 11.5 permite a un atacante remoto ejecutar código de su elección a través de ciertas RPC al puerto TCP 6502. • https://www.exploit-db.com/exploits/16407 http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050808.html http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050814.html http://secunia.com/advisories/23060 http://secunia.com/advisories/24512 http://securitytracker.com/id?1017268 http://supportconnectw.ca.com/public/storage/infodocs/babtapeng-securitynotice.asp http://www.kb.cert.org/vuls/id/437300 http://www.securityfocus.com/archive/1/452222/100/0/threaded •
CVE-2005-1272 – CA BrightStor Agent for Microsoft SQL - Remote Overflow
https://notcve.org/view.php?id=CVE-2005-1272
Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port (1) 6070 or (2) 6050. Desbordamiento de búfer en Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 permite que atacantes remotos ejecuten código arbitrario mediante el envío de una cadena larga al puerto 6070 ó 6050. • https://www.exploit-db.com/exploits/16403 https://www.exploit-db.com/exploits/1130 http://www.idefense.com/application/poi/display?id=287&type=vulnerabilities&flashstatus=true http://www.kb.cert.org/vuls/id/279774 http://www.securityfocus.com/bid/14453 http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33239 https://exchange.xforce.ibmcloud.com/vulnerabilities/21656 •