Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.5 allows remote malicious users to upload and overwrite arbitrary files via a ..\ (dot dot backslash) sequence in the destination filename argument to sub-function 8 in the rxrReceiveFileFromServer command.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
broadcom brightstor arcserve backup laptops desktops 11.5 |
||
broadcom brightstor arcserve backup laptops desktops 4.0 |
||
broadcom brightstor arcserve backup laptops desktops 11.0 |
||
broadcom desktop management suite 11.2 |
||
ca protection suites r2 |
||
broadcom desktop management suite 11.0 |
||
broadcom desktop management suite 11.1 |
||
broadcom brightstor arcserve backup laptops desktops 11.1 |
Vulmon