Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arcserve vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-6076
Buffer overflow in the Tape Engine (tapeeng.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and previous versions allows remote malicious users to execute arbitrary code via certain RPC requests to TCP port 6502.
Ca Brightstor Arcserve Backup 11
Ca Brightstor Arcserve Backup Agent 11.0
Broadcom Brightstor Arcserve Backup 11.1
Ca Brightstor Arcserve Backup 11.1
Broadcom Brightstor Arcserve Backup 11.5
Ca Brightstor Arcserve Backup Agent 11.1
Broadcom Brightstor Arcserve Backup
1 EDB exploit
NA
CVE-2001-0959
Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 creates a hidden share named ARCSERVE$, which allows remote malicious users to obtain sensitive information and overwrite critical files.
Ca Arcserve Backup 2000
Broadcom Arcserve Backup 6.61
Broadcom Arcserve Backup 2000
NA
CVE-2001-0960
Computer Associates ARCserve for NT 6.61 SP2a and ARCserve 2000 7.0 stores the backup agent user name and password in cleartext in the aremote.dmp file in the ARCSERVE$ hidden share, which allows local and remote malicious users to gain privileges.
Broadcom Arcserve Backup 6.61
Broadcom Arcserve Backup 2000
Ca Arcserve Backup 2000
NA
CVE-2015-4068
Directory traversal vulnerability in Arcserve UDP prior to 5.0 Update 4 allows remote malicious users to obtain sensitive information or cause a denial of service via a crafted file path to the (1) reportFileServlet or (2) exportServlet servlet.
Arcserve Arcserve Unified Data Protection
6.1
CVSSv3
CVE-2018-18660
An issue exists in Arcserve Unified Data Protection (UDP) up to and including 6.5 Update 4. There is a DDI-VRT-2018-21 Reflected Cross-site Scripting via /authenticationendpoint/domain.jsp issue.
Arcserve Udp 6.5
Arcserve Udp
NA
CVE-2015-4069
The EdgeServiceImpl web service in Arcserve UDP prior to 5.0 Update 4 allows remote malicious users to obtain sensitive credentials via a crafted SOAP request to the (1) getBackupPolicy or (2) getBackupPolicies method.
Arcserve Arcserve Unified Data Protection
NA
CVE-2007-1785
The RPC service in mediasvr.exe in CA BrightStor ARCserve Backup 11.5 SP2 build 4237 allows remote malicious users to execute arbitrary code via crafted xdr_handle_t data in RPC packets, which is used in calculating an address for a function call, as demonstrated using the 191 (0...
Ca Brightstor Arcserve Backup 11
Broadcom Brightstor Arcserve Backup 9.01
Broadcom Brightstor Arcserve Backup 11.5
Broadcom Brightstor Arcserve Backup 11.1
1 EDB exploit
1 Github repository
7.5
CVSSv3
CVE-2018-18657
An issue exists in Arcserve Unified Data Protection (UDP) up to and including 6.5 Update 4. There is a DDI-VRT-2018-18 Unauthenticated Sensitive Information Disclosure via /gateway/services/EdgeServiceImpl issue.
Arcserve Udp 6.5
Arcserve Udp 6.0
7.5
CVSSv3
CVE-2018-18658
An issue exists in Arcserve Unified Data Protection (UDP) up to and including 6.5 Update 4. There is a DDI-VRT-2018-20 Unauthenticated Sensitive Information Disclosure via /UDPUpdates/Config/FullUpdateSettings.xml issue.
Arcserve Udp 6.5
Arcserve Udp 6.0
7.5
CVSSv3
CVE-2018-18659
An issue exists in Arcserve Unified Data Protection (UDP) up to and including 6.5 Update 4. There is a DDI-VRT-2018-19 Unauthenticated XXE in /management/UdpHttpService issue.
Arcserve Udp 6.0
Arcserve Udp 6.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »