发布日期:2012-03-21
更新日期:2012-03-22
受影响系统:
Computer Associates ARCserve Backup R16
Computer Associates ARCserve Backup r15 SP1
Computer Associates ARCserve Backup r15
Computer Associates ARCserve Backup r12.5 SP1
Computer Associates ARCserve Backup r12.0 SP2
Computer Associates ARCserve Backup r12.0 sp1
Computer Associates ARCserve Backup 12.5
Computer Associates ARCserve Backup 12.0
不受影响系统:
Computer Associates ARCserve Backup r16 SP1
Computer Associates ARCserve Backup r12.5 SP2
描述:
--------------------------------------------------------------------------------
BUGTRAQ ID: 52655
CVE ID: CVE-2012-1662
CA ARCserve D2D是CA Technologies开发的基于磁盘的备份解决方案,可保护和恢复物理和虚拟服务器上的数据。
Computer Associates ARCserve Backup在验证某些网络请求的实现上存在安全漏洞,攻击者可利用此漏洞使受影响应用崩溃。
<*来源:vendor
链接:https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID={983E3A52-8374-410A-82BD-B8788733C70F}
*>
建议:
--------------------------------------------------------------------------------
厂商补丁:
Computer Associates
-------------------
目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: