This product is a cross-platform backup and recovery solution for small- to medium-sized businesses that protects and helps ensure the availability of critical applications and data. The vulnerabilities discovered by X-Force can be exploited remotely with no user interaction required. Successful exploitation could grant the attacker administrative privileges on the target machine.
"CA Brightstor ARCserve is widely deployed in corporate environments,"Â said Pete Allor, director of intelligence for IBM Internet Security Systems. "Since it is normally used for the protection and recovery of mission-critical applications, and since these two vulnerabilities are not difficult to exploit, ISS recommends that companies using CA Brightstor ARCserve patch immediately."Â
IBM ISS customers have been preemptively protected from these issues since November. By infusing its products and services with security intelligence from X-Force and the unique IBM Virtual Patch technology, IBM designs its solution to protect customers before their business assets are impacted by online intrusions - IBM.
Posted January 12th, 2007 by Nymphadora
