Directory traversal vulnerability in the RPC interface (asdbapi.dll) in CA ARCserve Backup (formerly BrightStor ARCserve Backup) r11.1 through r12.0 allows remote attackers to execute arbitrary commands via a .. (dot dot) in an RPC call with opnum 0x10A.
References
Configurations
Configuration 1 (hide)
|
History
09 Apr 2021, 18:54
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:broadcom:server_protection_suite:r2:*:*:*:*:*:*:* |
07 Apr 2021, 18:53
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:ca:business_protection_suite:r2:*:*:*:*:*:*:* |
cpe:2.3:a:broadcom:arcserve_backup:r12.0:*:*:*:*:*:*:* cpe:2.3:a:broadcom:business_protection_suite:r2:*:*:*:*:*:*:* |
Information
Published : 2008-10-14 21:10
Updated : 2023-12-10 10:51
NVD link : CVE-2008-4397
Mitre link : CVE-2008-4397
CVE.ORG link : CVE-2008-4397
JSON object : View
Products Affected
ca
- business_protection_suite
- arcserve_backup
broadcom
- business_protection_suite
- server_protection_suite
- arcserve_backup