CA ARCserve Backup tape engine denial of service (MSRPC_ARCserve_TapeEngine_CreateJobHandle_DoS)

About this signature or vulnerability

Proventia Network MFS, Proventia-G 1.1 and earlier, IBM Security Host Protection for Servers (Windows), RealSecure Server Sensor, Proventia Network IPS, Proventia Network IDS, IBM Security Host Protection for Desktops, Proventia Server IPS for Linux technology, Virtual Server Protection for Vmware, IBM Security Host Protection for Servers (Unix):

This signature looks for an RPC message for CA BrightStor ARCserve Backup Tape Engine (UUID 62b93df0-8b02-11ce-876c-00805f842837) with specially-crafted data, which can exploit a vulnerability to cause service to crash.

Default risk level

 Medium

Sensors that have this signature

Proventia Network MFS: XPU 32.050, Proventia-G 1.1 and earlier: XPU 32.050, IBM Security Host Protection for Servers (Windows): 2.1.14.2760, RealSecure Server Sensor: XPU 32.050, Proventia Network IPS: XPU 32.050, Proventia Network IDS: XPU 32.050, IBM Security Host Protection for Desktops: 2760, Proventia Server IPS for Linux technology: 32.050, Virtual Server Protection for Vmware: XPU 32.050, IBM Security Host Protection for Servers (Unix): 2.2.2

Systems affected

CA BrightStor ARCserve Backup: 11.1, CA Server Protection Suite: 2, CA Business Protection Suite: 2.0, CA BrightStor ARCserve Backup: 11.5, CA Business Protection Suite for Microsoft Small Business Server: 2 Standard, CA Business Protection Suite for Microsoft Small Business Server: 2 Premium, CA ARCserve Backup: 12.0

Type

Denial of Service

Vulnerability description

How to remove this vulnerability

References