CA ARCserve Backup for Laptops and Desktops LGServer service code execution

Added: 05/07/2008
CVE: CVE-2008-1328
BID: 28616
OSVDB: 44320

Background

BrightStor ARCserve Backup for Laptops and Desktops is an automated backup solution optimized for low-bandwidth, intermittent network connections.

Problem

A buffer overflow vulnerability in BrightStor ARCserve Backup for Laptops and Desktops allows remote attackers to execute arbitrary commands by sending a long request to the LGServer.exe process.

Resolution

Apply one of the updates referenced in the CA Security Notice.

References

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=173105

Limitations

Exploit works on CA ARCserve Backup for Laptops and Desktops r11.1 SP2 with the patch QO91014 and requires the target to be able to connect back to the SAINTexploit host on the shellcode retrieval port.

Platforms

Windows 2000
Windows Server 2003

Back to exploit index