Vulnerabilities > CVE-2008-1979 - Numeric Errors vulnerability in Broadcom Brightstor Arcserve Backup
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The Discovery Service (casdscvc) in CA ARCserve Backup 12.0.5454.0 and earlier allows remote attackers to cause a denial of service (crash) via a packet with a large integer value used in an increment to TCP port 41523, which triggers a buffer over-read.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 14 |
Common Weakness Enumeration (CWE)
Exploit-Db
description | Computer Associates ARCserve Backup Discovery Service Remote Denial Of Service Vulnerability. CVE-2008-1979. Dos exploit for windows platform |
id | EDB-ID:31707 |
last seen | 2016-02-03 |
modified | 2008-04-24 |
published | 2008-04-24 |
reporter | Luigi Auriemma |
source | https://www.exploit-db.com/download/31707/ |
title | Computer Associates ARCserve Backup Discovery Service Remote - Denial Of Service Vulnerability |
References
- http://aluigi.altervista.org/adv/carcbackazz-adv.txt
- http://secunia.com/advisories/29855
- http://www.securityfocus.com/archive/1/493430/100/0/threaded
- http://www.securityfocus.com/bid/28927
- http://www.securitytracker.com/id?1020324
- http://www.vupen.com/english/advisories/2008/1354
- https://exchange.xforce.ibmcloud.com/vulnerabilities/41869