Description
Stack-based buffer overflow in the Discovery Service for BrightStor ARCserve Backup 11.1 and earlier allows remote attackers to execute arbitrary code via a long packet to UDP port 41524, which is not properly handled in a recvfrom call.
Affected products
- Broadcom / brightstor_arcserve_backup11.1 – 11.1
References
- VENDOR_ADVISORYhttp://secunia.com/advisories/14183
- MISChttp://www.idefense.com/application/poi/display?id=194&type=vulnerabilities
- MISChttp://supportconnectw.ca.com/public/enews/BrightStor/brigcurrent.asp#news1
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/19251
- MISChttp://securitytracker.com/id?1013138