25 April 2007, 13:57

CA eliminates three week old vulnerability in BrightStor ARCserve

Computer Associates has finally released an update for the vulnerability announced three weeks ago in BrightStor ARCserve Backup. An exploit has been circulating since the problem became apparent. The bug was discovered in an RPC service that processes specific strings, allowing code to be injected and executed. According to the error report from CA, a further vulnerability, which existed there as well, has also been eliminated by the update.

The following were affected: BrightStor ARCserve Backup r11.5, r11.1, r11 for Windows, BrightStor Enterprise Backup r10.5, v9.01, Server Protection Suite r2, CA Business Protection Suite r2 and Business Protection Suite for Microsoft Small Business Server Standard Edition r2 and Premium Edition r2.

Channels

Services

CA eliminates three week old vulnerability in BrightStor ARCserve

Also on The H:

Content Security Policy halts XSS in its tracks

Skype's ominous link checking: Facts and speculation

Password protection for everyone

Two clicks for more privacy

What's new in SUSE Linux Enterprise 11 SP3

What's new in Fedora 19

What's new in Linux 3.10

Free Software post-PRISM

Kernel Log: Coming in 3.10 (Part 4) - Drivers

The trouble with "Business Source"

Kernel Log: Coming in 3.10 (Part 3) - Infrastructure

Whatever happened to Google?

Java EE 7 at a glance

Continuous database migration with Liquibase and Flyway

Unit testing with Node.js

Ruby 2.0 - the 20th birthday present

Linux Mint 15: A better Ubuntu for the desktop

What's new in Linux 3.9

Replacing Google Reader

Attacking TrueCrypt

The H

The H Open

The H Security

The H Developer

The H Internet Toolkit