What is CVE-2005-2535?

CVE-2005-2535 is a vulnerability in N/a. Published 2005-08-10.

Is CVE-2005-2535 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2005-2535

Buffer overflow in the Discovery Service in BrightStor ARCserve Backup 9.0 through 11.1 allows remote attackers to execute arbitrary commands via a large packet to TCP port 41523, a different vulnerability than CVE-2005-0260.

EPSS: 0.829 (99.3th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

20050211 BrightStor ARCserve Backup buffer overflow PoC (mailing-list, x_refsource_BUGTRAQ)
brightstor-discovery-servicepc-bo(19320) (vdb-entry, x_refsource_XF)
VU#966880 (x_refsource_CERT-VN, third-party-advisory)
20050215 Re: BrightStor ARCserve Backup buffer overflow PoC (mailing-list, x_refsource_BUGTRAQ)
12536 (vdb-entry, x_refsource_BID)
20050211 Re: BrightStor ARCserve Backup buffer overflow PoC (mailing-list, x_refsource_BUGTRAQ)
13814 (x_refsource_OSVDB, vdb-entry)
www3.ca.com/securityadvisor/vulninfo/vuln.aspx (x_refsource_CONFIRM)
14293 (x_refsource_SECUNIA, third-party-advisory)

Frequently asked questions

What is CVE-2005-2535?: CVE-2005-2535 is a vulnerability in N/a. Published 2005-08-10.
Is CVE-2005-2535 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.