3663
2 Pages

3663

Course Number: CS 591, Fall 2009

College/University: UCCS

Word Count: 229

Rating:

Document Preview

Rule: -- Sid: 3663 -- Summary: This event is generated when an attempt is made to exploit a buffer overflow associated with BrightStor ARCserve Backup Universal Agent message processing. -- Impact: A successful attack can cause a buffer overflow and the subsequent execution of arbitrary code with system level privileges on a vulnerable server. -- Detailed Information: A vulnerability exists in the way that a...

Unformatted Document Excerpt
Coursehero >> Colorado >> UCCS >> CS 591

Course Hero has millions of student submitted documents similar to the one
below including study guides, practice problems, reference materials, practice exams, textbook help and tutor support.

Course Hero has millions of student submitted documents similar to the one below including study guides, practice problems, reference materials, practice exams, textbook help and tutor support.

event Rule: -- Sid: 3663 -- Summary: This is generated when an attempt is made to exploit a buffer overflow associated with BrightStor ARCserve Backup Universal Agent message processing. -- Impact: A successful attack can cause a buffer overflow and the subsequent execution of arbitrary code with system level privileges on a vulnerable server. -- Detailed Information: A vulnerability exists in the way that a the BrightStor ARCserve Backup Universal Agent processes messages with overly long data. The Universal Agent software of the ARCserve Backup suite is used to push backups from individual hosts to the server component. A message with a combination of specific option types, length value ranges and overly long data sent to a Universal Agent listener can cause a buffer overflow the and subsequent execution of arbitrary code with system level privileges on a vulnerable server. -- Affected Systems: Computer Associates BrightStor ARCserver Backup 9.x - 11.1 Computer Associates BrightStor Enterprise Backup 10.x -- Attack Scenarios: An attacker can craft a malformed message causing a buffer overflow. -- Ease of Attack: Simple. Exploits are publicly available. -- False Positives: None known. -- False Negatives: None known....

Textbooks related to the document above:

MOST POPULAR MATERIALS FROM CS 591
MOST POPULAR MATERIALS FROM CS
MOST POPULAR MATERIALS FROM UCCS