Vulnerability Description
Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sent to port (1) 6070 or (2) 6050.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Brightstor Enterprise Backup | 10.0 |
| Ca | Brightstor Arcserve Backup | 9.0.1 |
| Ca | Brightstor Arcserve Backup Agent | 9.0.1 |
| Ca | Brightstor Enterprise Backup Agent | 10.0 |
References
- http://www.idefense.com/application/poi/display?id=287&type=vulnerabilities&flas
- http://www.kb.cert.org/vuls/id/279774PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/14453ExploitPatch
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33239Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21656
- http://www.idefense.com/application/poi/display?id=287&type=vulnerabilities&flas
- http://www.kb.cert.org/vuls/id/279774PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/14453ExploitPatch
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33239Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/21656
FAQ
What is CVE-2005-1272?
CVE-2005-1272 is a vulnerability with a CVSS score of 7.5 (HIGH). Stack-based buffer overflow in the Backup Agent for Microsoft SQL Server in BrightStor ARCserve Backup Agent for SQL Server 11.0 allows remote attackers to execute arbitrary code via a long string sen...
How severe is CVE-2005-1272?
CVE-2005-1272 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-1272?
Check the references section above for vendor advisories and patch information. Affected products include: Broadcom Brightstor Enterprise Backup, Ca Brightstor Arcserve Backup, Ca Brightstor Arcserve Backup Agent, Ca Brightstor Enterprise Backup Agent.