RETIRED: Computer Associates ARCserve D2D and ARCserve Backup Arbitrary Code Execution Vulnerability

RETIRED: Computer Associates ARCserve D2D and ARCserve Backup Arbitrary Code Execution Vulnerability

Computer Associates ARCserve D2D and ARCserve Backup are prone to a vulnerability that lets attackers execute arbitrary code.

An attacker can exploit this issue by enticing a legitimate user to use the vulnerable application to open a file from a network share location that contains a specially crafted script file.

Computer Associates ARCserve D2D r15 and ARCserve Backup r15 are vulnerable; other versions may also be affected.

RETIRED: This BID is retired because it is a duplicate of BID 48897 (Computer Associates ARCserve D2D 'homepageServlet' Servlet Information Disclosure Vulnerability).