The Tape Engine service in Computer Associates (CA) BrightStor ARCserve Backup 9.01 up to and including 11.5, Enterprise Backup 10.5, and CA Server/Business Protection Suite r2 allows remote malicious users to execute arbitrary code via certain data in opnum 0xBF in an RPC request, which is directly executed.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
broadcom business protection suite 2.0 |
||
broadcom brightstor arcserve backup |
||
broadcom brightstor arcserve backup 9.01 |
||
broadcom brightstor enterprise backup 10.5 |