Issued: March 18, 2010
CA's support is alerting customers to a security risk with CA ARCserve Backup. The version of JRE shipped with ARCserve Backup is potentially susceptible to multiple vulnerabilities and has also reached end of life. Support is providing JRE 1.6 upgrades as remediation.
CA ARCserve Backup r12.5
CA ARCserve Backup r12.0
CA ARCserve Backup r11.5
CA ARCserve Backup r12.5 SP1
How to determine if the installation is affected
CA ARCserve Backup r12.5, r12.0, r11.5 Windows:
|CA ARCserve Backup r12.5 Windows||RO14718|
|CA ARCserve Backup r12.0 Windows||RO14231|
|CA ARCserve Backup r11.5 Windows||RO14695|
For more information on the ARCserve Patch Management utility, read document TEC446265.
CA support has issued the following patches to address the issue.
CA ARCserve Backup r12.5:
Upgrade to r12.5 service pack 1 RO14718.
CA ARCserve Backup 12.0:
CA ARCserve Backup 11.5:
Version 1.0: Initial Release
If additional information is required, please contact CA Support at http://support.ca.com/.
If you discover a vulnerability in CA products, please report your findings to the CA Product Vulnerability Response Team.