{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2006-10-06T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in CA BrightStor ARCserve Backup r11.5 SP1 and earlier, r11.1, and 9.01; BrightStor ARCserve Backup for Windows r11; BrightStor Enterprise Backup 10.5; Server Protection Suite r2; and Business Protection Suite r2 allow remote attackers to execute arbitrary code via crafted data on TCP port 6071 to the Backup Agent RPC Server (DBASVR.exe) using the RPC routines with opcode (1) 0x01, (2) 0x02, or (3) 0x18; invalid stub data on TCP port 6503 to the RPC routines with opcode (4) 0x2b or (5) 0x2d in ASCORE.dll in the Message Engine RPC Server (msgeng.exe); (6) a long hostname on TCP port 41523 to ASBRDCST.DLL in the Discovery Service (casdscsvc.exe); or unspecified vectors related to the (7) Job Engine Service."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-17T20:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20061005 TSRT-06-11: CA Multiple Product DBASVR RPC Server Multiple Buffer Overflow Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/447862/100/100/threaded"}, {"name": "22285", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/22285"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-031.html"}, {"tags": ["x_refsource_MISC"], "url": "http://www.lssec.com/advisories/LS-20060330.pdf"}, {"name": "ca-dbasvr-rpc-bo(29364)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29364"}, {"name": "20061007 LS-20060313 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/447930/100/200/threaded"}, {"tags": ["x_refsource_MISC"], "url": "http://www.lssec.com/advisories/LS-20060313.pdf"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34693"}, {"name": "VU#361792", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/361792"}, {"name": "20061007 LS-20060220 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/447926/100/200/threaded"}, {"name": "1017004", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017004"}, {"name": "VU#860048", "tags": ["third-party-advisory", "x_refsource_CERT-VN"], "url": "http://www.kb.cert.org/vuls/id/860048"}, {"name": "ADV-2006-3930", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2006/3930"}, {"tags": ["x_refsource_MISC"], "url": "http://www.lssec.com/advisories/LS-20060220.pdf"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=93775&id=90744"}, {"name": "20365", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/20365"}, {"tags": ["x_refsource_MISC"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-030.html"}, {"name": "20061005 ZDI-06-030: CA Multiple Product Discovery Service Remote Buffer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/447847/100/200/threaded"}, {"name": "20061007 LS-20060330 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/447927/100/200/threaded"}, {"tags": ["x_refsource_MISC"], "url": "http://www.tippingpoint.com/security/advisories/TSRT-06-11.html"}, {"name": "1017006", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017006"}, {"name": "1017003", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017003"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=94397&id=90744"}, {"name": "1017005", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1017005"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://supportconnectw.ca.com/public/storage/infodocs/basbr-secnotice.asp"}, {"name": "20061006 [CAID 34693, 34694]: CA BrightStor ARCserve Backup Multiple Buffer Overflow Vulnerabilities", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/447839/100/100/threaded"}, {"name": "20061005 ZDI-06-031: CA Multiple Product Message Engine RPC Server Code Execution Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/447848/100/100/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2006-5143", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple buffer overflows in CA BrightStor ARCserve Backup r11.5 SP1 and earlier, r11.1, and 9.01; BrightStor ARCserve Backup for Windows r11; BrightStor Enterprise Backup 10.5; Server Protection Suite r2; and Business Protection Suite r2 allow remote attackers to execute arbitrary code via crafted data on TCP port 6071 to the Backup Agent RPC Server (DBASVR.exe) using the RPC routines with opcode (1) 0x01, (2) 0x02, or (3) 0x18; invalid stub data on TCP port 6503 to the RPC routines with opcode (4) 0x2b or (5) 0x2d in ASCORE.dll in the Message Engine RPC Server (msgeng.exe); (6) a long hostname on TCP port 41523 to ASBRDCST.DLL in the Discovery Service (casdscsvc.exe); or unspecified vectors related to the (7) Job Engine Service."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20061005 TSRT-06-11: CA Multiple Product DBASVR RPC Server Multiple Buffer Overflow Vulnerabilities", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/447862/100/100/threaded"}, {"name": "22285", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/22285"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-06-031.html", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-031.html"}, {"name": "http://www.lssec.com/advisories/LS-20060330.pdf", "refsource": "MISC", "url": "http://www.lssec.com/advisories/LS-20060330.pdf"}, {"name": "ca-dbasvr-rpc-bo(29364)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29364"}, {"name": "20061007 LS-20060313 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/447930/100/200/threaded"}, {"name": "http://www.lssec.com/advisories/LS-20060313.pdf", "refsource": "MISC", "url": "http://www.lssec.com/advisories/LS-20060313.pdf"}, {"name": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34693", "refsource": "CONFIRM", "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34693"}, {"name": "VU#361792", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/361792"}, {"name": "20061007 LS-20060220 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/447926/100/200/threaded"}, {"name": "1017004", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017004"}, {"name": "VU#860048", "refsource": "CERT-VN", "url": "http://www.kb.cert.org/vuls/id/860048"}, {"name": "ADV-2006-3930", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2006/3930"}, {"name": "http://www.lssec.com/advisories/LS-20060220.pdf", "refsource": "MISC", "url": "http://www.lssec.com/advisories/LS-20060220.pdf"}, {"name": "http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=93775&id=90744", "refsource": "CONFIRM", "url": "http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=93775&id=90744"}, {"name": "20365", "refsource": "BID", "url": "http://www.securityfocus.com/bid/20365"}, {"name": "http://www.zerodayinitiative.com/advisories/ZDI-06-030.html", "refsource": "MISC", "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-030.html"}, {"name": "20061005 ZDI-06-030: CA Multiple Product Discovery Service Remote Buffer Overflow Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/447847/100/200/threaded"}, {"name": "20061007 LS-20060330 - CA BrightStor ARCserve Backup Remote Buffer Overflow Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/447927/100/200/threaded"}, {"name": "http://www.tippingpoint.com/security/advisories/TSRT-06-11.html", "refsource": "MISC", "url": "http://www.tippingpoint.com/security/advisories/TSRT-06-11.html"}, {"name": "1017006", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017006"}, {"name": "1017003", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017003"}, {"name": "http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=94397&id=90744", "refsource": "CONFIRM", "url": "http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=94397&id=90744"}, {"name": "1017005", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1017005"}, {"name": "http://supportconnectw.ca.com/public/storage/infodocs/basbr-secnotice.asp", "refsource": "CONFIRM", "url": "http://supportconnectw.ca.com/public/storage/infodocs/basbr-secnotice.asp"}, {"name": "20061006 [CAID 34693, 34694]: CA BrightStor ARCserve Backup Multiple Buffer Overflow Vulnerabilities", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/447839/100/100/threaded"}, {"name": "20061005 ZDI-06-031: CA Multiple Product Message Engine RPC Server Code Execution Vulnerability", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/447848/100/100/threaded"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2006-5143", "datePublished": "2006-10-06T20:00:00", "dateReserved": "2006-10-02T00:00:00", "dateUpdated": "2018-10-17T20:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:*:sp1:*:*:*:*:*:*", "matchCriteriaId": "8745E951-E151-4EB6-86B4-4E8754ADEFE8", "versionEndIncluding": "11.5", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:9.01:*:*:*:*:*:*:*", "matchCriteriaId": "F52790F8-0D23-47F4-B7F7-6CB0F7B6EA14", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*", "matchCriteriaId": "E37161BE-6AF5-40E0-BD63-2C17431D8B36", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:brightstor_enterprise_backup:10.5:*:*:*:*:*:*:*", "matchCriteriaId": "78AA54EA-DAF1-4635-AA1B-E2E49C4BB597", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:business_protection_suite:2.0:*:*:*:*:*:*:*", "matchCriteriaId": "328E1C42-488A-43FC-8DF2-758DC73B74AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:server_protection_suite:2:*:*:*:*:*:*:*", "matchCriteriaId": "A8781759-7B4C-47C3-8A60-8CA5520360C5", "vulnerable": true}, {"criteria": "cpe:2.3:a:ca:brightstor_arcserve_backup:11:*:windows:*:*:*:*:*", "matchCriteriaId": "6E236148-4A57-4FDC-A072-A77D3DD2DB53", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple buffer overflows in CA BrightStor ARCserve Backup r11.5 SP1 and earlier, r11.1, and 9.01; BrightStor ARCserve Backup for Windows r11; BrightStor Enterprise Backup 10.5; Server Protection Suite r2; and Business Protection Suite r2 allow remote attackers to execute arbitrary code via crafted data on TCP port 6071 to the Backup Agent RPC Server (DBASVR.exe) using the RPC routines with opcode (1) 0x01, (2) 0x02, or (3) 0x18; invalid stub data on TCP port 6503 to the RPC routines with opcode (4) 0x2b or (5) 0x2d in ASCORE.dll in the Message Engine RPC Server (msgeng.exe); (6) a long hostname on TCP port 41523 to ASBRDCST.DLL in the Discovery Service (casdscsvc.exe); or unspecified vectors related to the (7) Job Engine Service."}, {"lang": "es", "value": "M\u00faltiples desbordamientos de b\u00fafer basado en mont\u00f3n en CA BrightStor ARCserve Backup r11.5 SP1 y anteriores, r11.1, y 9.01; BrightStor ARCServe Backup for Windows r11; BrightStor Enterprise Backup 10.5; Server Protection Suite r2; y Buisiness Protection Suite r2 permiten a un atacante remoto ejecutar c\u00f3digo de su elecci\u00f3n mediante datos manipulados en el puerto TCP 6071 para el Backup Agent RPC Server (DBASVR.exe) utilizando rutinas RPC con c\u00f3digos de operaci\u00f3n (opcode) (1) 0x01, (2) 0x02, y (3) 0x18; datos de cabo (stub) inv\u00e1lidos en el puerto TCP 6503 para las rutinas RPC con c\u00f3digos de operaci\u00f3n (4)0x2b o (5) 0x2d en ASCORE.dll en el Message Engine RPC Server (msgeng.exe); (6) un nombre de anfitri\u00f3n (hostname ) largo en el puerto TCP 41523 para ASBRDCST.DLL en el Discovery Service (casdscsvc.exe); o vectores no especificados relacionados con el (7) Job Engine Service."}], "id": "CVE-2006-5143", "lastModified": "2021-04-09T18:54:02.253", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2006-10-10T04:06:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/22285"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1017003"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1017004"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1017005"}, {"source": "cve@mitre.org", "url": "http://securitytracker.com/id?1017006"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://supportconnectw.ca.com/public/storage/infodocs/basbr-secnotice.asp"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/361792"}, {"source": "cve@mitre.org", "tags": ["US Government Resource"], "url": "http://www.kb.cert.org/vuls/id/860048"}, {"source": "cve@mitre.org", "url": "http://www.lssec.com/advisories/LS-20060220.pdf"}, {"source": "cve@mitre.org", "url": "http://www.lssec.com/advisories/LS-20060313.pdf"}, {"source": "cve@mitre.org", "url": "http://www.lssec.com/advisories/LS-20060330.pdf"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/447839/100/100/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/447847/100/200/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/447848/100/100/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/447862/100/100/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/447926/100/200/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/447927/100/200/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/447930/100/200/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/20365"}, {"source": "cve@mitre.org", "tags": ["Patch"], "url": "http://www.tippingpoint.com/security/advisories/TSRT-06-11.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.vupen.com/english/advisories/2006/3930"}, {"source": "cve@mitre.org", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-030.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://www.zerodayinitiative.com/advisories/ZDI-06-031.html"}, {"source": "cve@mitre.org", "url": "http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=93775&id=90744"}, {"source": "cve@mitre.org", "url": "http://www3.ca.com/securityadvisor/blogs/posting.aspx?pid=94397&id=90744"}, {"source": "cve@mitre.org", "url": "http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34693"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/29364"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-119"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}