Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2972

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-2972
Last Modified 20 Jun 2013 11:12:01
Published 20 Oct 2012 06:41:27
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-2972

Summary

The (1) server and (2) agent components in CA ARCserve Backup r12.5, r15, and r16 on Windows do not properly validate RPC requests, which allows remote attackers to cause a denial of service (service crash) via a crafted request.

Vulnerable Systems

Application

  • Ca Arcserve Backup R12.5

  • Ca Arcserve Backup R15.0

  • Ca Arcserve Backup R16.0


References

CONFIRM - https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID={F9EEA31E-8089-423E-B746-41B5C9DD2AC1}

XF - arcserve-backup-rpc-dos(79477)

CERT-VN - VU#408099

FULLDISC - 20130114 Updated - CA20121018-01: Security Notice for CA ARCserve Backup

CONFIRM - http://packetstormsecurity.com/files/119543/Security-Notice-For-CA-ARCserve-Backup.html

OSVDB - 86415


Last Updated: 27 May 2016 10:51:46