CVE-2012-2971
CA ARCserve Backup r12.5-r16 - Remote Code Execution via Crafted RPC Request
Title source: llmDescription
The server in CA ARCserve Backup r12.5, r15, and r16 on Windows does not properly process RPC requests, which allows remote attackers to execute arbitrary code or cause a denial of service via a crafted request.
References (6)
Core 6
Core References
Various Sources x_refsource_confirm
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7BF9EEA31E-8089-423E-B746-41B5C9DD2AC1%7D
Mailing List mailing-list
x_refsource_fulldisc
http://seclists.org/fulldisclosure/2013/Jan/86
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://osvdb.org/86416
Third Party Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/51012
Exploit, Third Party Advisory x_refsource_confirm
http://packetstormsecurity.com/files/119543/Security-Notice-For-CA-ARCserve-Backup.html
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/79476
Scores
EPSS
0.0405
EPSS Percentile
89.4%
Details
CWE
CWE-94
Status
published
Published
Oct 20, 2012
Tracked Since
Feb 18, 2026