CVE-2006-5143: Buffer Overflow
First published: Fri Oct 06 2006(Updated: )
Multiple buffer overflows in CA BrightStor ARCserve Backup r11.5 SP1 and earlier, r11.1, and 9.01; BrightStor ARCserve Backup for Windows r11; BrightStor Enterprise Backup 10.5; Server Protection Suite r2; and Business Protection Suite r2 allow remote attackers to execute arbitrary code via crafted data on TCP port 6071 to the Backup Agent RPC Server (DBASVR.exe) using the RPC routines with opcode (1) 0x01, (2) 0x02, or (3) 0x18; invalid stub data on TCP port 6503 to the RPC routines with opcode (4) 0x2b or (5) 0x2d in ASCORE.dll in the Message Engine RPC Server (msgeng.exe); (6) a long hostname on TCP port 41523 to ASBRDCST.DLL in the Discovery Service (casdscsvc.exe); or unspecified vectors related to the (7) Job Engine Service.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Broadcom ARCserve Backup | <=11.5 | |
| Broadcom ARCserve Backup | =9.01 | |
| Broadcom ARCserve Backup | =11.1 | |
| Broadcom BrightStor Enterprise Backup | =10.5 | |
| Broadcom Business Protection Suite | =2.0 | |
| Broadcom Server Protection Suite | =2 | |
| CA ARCserve Backup for Laptops and Desktops | =11 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.tippingpoint.com/security/advisories/TSRT-06-11.html
- http://www.zerodayinitiative.com/advisories/ZDI-06-030.html
- http://supportconnectw.ca.com/public/storage/infodocs/basbr-secnotice.asp
- http://www.zerodayinitiative.com/advisories/ZDI-06-031.html
- http://www.securityfocus.com/bid/20365
- http://securitytracker.com/id?1017003
- http://securitytracker.com/id?1017004
- http://securitytracker.com/id?1017005
- http://securitytracker.com/id?1017006
- http://www.lssec.com/advisories/LS-20060220.pdf
- http://www.lssec.com/advisories/LS-20060313.pdf
- http://www.lssec.com/advisories/LS-20060330.pdf
- http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=93775&id=90744
- http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=94397&id=90744
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34693
- http://www.kb.cert.org/vuls/id/361792
- http://www.kb.cert.org/vuls/id/860048
- http://secunia.com/advisories/22285
- http://www.vupen.com/english/advisories/2006/3930
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29364
- http://www.securityfocus.com/archive/1/447930/100/200/threaded
- http://www.securityfocus.com/archive/1/447927/100/200/threaded
- http://www.securityfocus.com/archive/1/447926/100/200/threaded
- http://www.securityfocus.com/archive/1/447862/100/100/threaded
- http://www.securityfocus.com/archive/1/447848/100/100/threaded
- http://www.securityfocus.com/archive/1/447847/100/200/threaded
- http://www.securityfocus.com/archive/1/447839/100/100/threaded
Frequently Asked Questions
What is the severity of CVE-2006-5143?
CVE-2006-5143 has a high severity rating due to the potential for remote code execution by attackers.
How do I fix CVE-2006-5143?
To fix CVE-2006-5143, update to the latest version of BrightStor ARCserve Backup or apply any available patches from Broadcom.
Which versions are affected by CVE-2006-5143?
CVE-2006-5143 affects several versions including CA BrightStor ARCserve Backup r11.5 SP1 and earlier, r11.1, 9.01, along with BrightStor Enterprise Backup 10.5.
Who is vulnerable to CVE-2006-5143?
Organizations using the affected versions of CA BrightStor ARCserve Backup or BrightStor Enterprise Backup are vulnerable to CVE-2006-5143.
What type of vulnerability is CVE-2006-5143?
CVE-2006-5143 is classified as a buffer overflow vulnerability that allows remote attackers to execute arbitrary code.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/remedy
- agent/references
- agent/author
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/ca
- product/brightstor arcserve backup
- canonical/ca brightstor arcserve backup
- vendor/broadcom
- canonical/broadcom brightstor arcserve backup
- product/brightstor enterprise backup
- canonical/broadcom brightstor enterprise backup
- product/business protection suite
- canonical/broadcom business protection suite
- product/server protection suite
- canonical/broadcom server protection suite
- canonical/broadcom arcserve backup
- version/broadcom arcserve backup/11.5
- version/broadcom arcserve backup/9.01
- version/broadcom arcserve backup/11.1
- version/broadcom brightstor enterprise backup/10.5
- version/broadcom business protection suite/2.0
- version/broadcom server protection suite/2
- canonical/ca arcserve backup for laptops and desktops
- version/ca arcserve backup for laptops and desktops/11