Overview
» IDS/IPS Signatures
Security Sites
Products
White Papers
Data Sheets
Case Studies
Support Login
Locate a Partner
iPolicy Networks Security Advisory
 

CA BrightStor ARCserve Backup caloggerd Directory Traversal Vulnerability
Date Discovered: 5/21/2008
Severity: High
Applications Affected: CA BrightStor ARCserve Backup, 11.5
CA BrightStor ARCserve Backup, Release 11.5
CA Server Protection Suite, Release 2
CA Business Protection Suite, Release 2, Microsoft Small Business Server Standard/ Premium

Synopsis
Computer Associates (CA) BrightStor ARCserve Backup is a software which protects data on servers, clients, databases and applications. CA backup servers can performs tasks like backing up system settings, files etc.

CA BrightStor ARCserve Backup is prone to arbitrary file overwriting vulnerability which doesn't need prior authentication to exploit.
Recommended Actions
Update with latest stable version.
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=176798
Threat Analysis
Computer Associates BrightStor ARCserve Backup uses Open Network Computing Remote Procedure Call (ONCRPC) service to communicate. The caloggerd event logger service process (caloggerd.exe) is used to process log messages.

The flaw exists in caloggerd log daemon which fails to properly check user supplied paths. This can be exploited to append arbitrary data to a file via directory traversal which can lead to complete compromise of the system.
References

http://nvd.nist.gov/nvd.cfm?cvename=CVE-2008-2241
http://www.securityfocus.com/bid/29283/discuss
http://secunia.com/advisories/30300/
http://www.zerodayinitiative.com/advisories/ZDI-08-027/
Write-up by: Praveen Darshanam
Security Sites
 
“iPolicy is one of the most visionary firewall vendors in the firewall Magic Quadrant. Its architecture of a central session processing engine and multiple content blades that are able to block based on signatures, rules and so on is the closest to the network security ideal.”
 
Greg Young, John Pescatore
Magic Quadrant for Network Firewalls, 2H04, Gartner
 

 
Home | About Us | Products | Technology | Solutions | Support | Partners | News & Events | Resources | Contact Us
Copyright ©2008 iPolicy Networks - Security Products Division of Tech Mahindra Limited | Privacy Policy | Site Map