{"$ref":"https://www.cert.ssi.gouv.fr/openapi.json","affected_systems":[{"description":"BrightStor Enterprise Backup r10.5 ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"CA Protection Suite r2 ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"BrightStor ARCserve Backup pour Windows r11 ;","product":{"name":"Windows","vendor":{"name":"Microsoft","scada":false}}},{"description":"CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2 ;","product":{"name":"Small Business","vendor":{"name":"Cisco","scada":false}}},{"description":"BrightStor ARCserve Backup r11.5 ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"BrightStor ARCserve Backup r9.01 ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2.","product":{"name":"Small Business","vendor":{"name":"Cisco","scada":false}}},{"description":"BrightStor ARCserve Backup r11.1 ;","product":{"name":"N/A","vendor":{"name":"N/A","scada":false}}},{"description":"CA Business Protection Suite r2 ;","product":{"name":"N/A","vendor":{"name":"Cisco","scada":false}}}],"affected_systems_content":null,"content":"## Description\n\nPlusieurs vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans Computer Associates\nBrightStor ARCserve Backup. Celles-ci affectent les services Tape\nEngine, Mediasvr et la biblioth\u00e8que ASCORE.dll. Un utilisateur\nmalintentionn\u00e9 peut exploiter ces vuln\u00e9rabilit\u00e9s, par l'interm\u00e9diaire de\npaquets envoy\u00e9s aux ports 6502/tcp, 6503/tcp ou 6504/tcp, afin\nd'ex\u00e9cuter du code arbitraire \u00e0 distance.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l'\u00e9diteur pour l'obtention des\ncorrectifs (cf. section Documentation).\n","cves":[],"links":[],"reference":"CERTA-2007-AVI-029","revisions":[{"description":"version initiale.","revision_date":"2007-01-12T00:00:00.000000"}],"risks":[{"description":"Ex\u00e9cution de code arbitraire \u00e0 distance"}],"summary":"Plusieurs vuln\u00e9rabilit\u00e9s dans <span class=\"textit\">Computer Associates\nBrightStor ARCserve Backup</span> permettent l'ex\u00e9cution de code\narbitraire \u00e0 distance.\n","title":"Vuln\u00e9rabilit\u00e9s dans Computer Associates BrightStor ARCserve Backup","vendor_advisories":[{"published_at":null,"title":"Bulletin de s\u00e9curit\u00e9 Computer Associates du 11 janvier 2007","url":"http://supportconnectw.ca.com/public/storage/infodocs/babimpsec-notice.asp"}]}