IBM Internet Security Systems Discovers and Protects Customers from Vulnerabilities in CA Storage Management Product

IBM Internet Security Systems Discovers and Protects Customers from Vulnerabilities in CA Storage Management Product

IBM (NYSE: IBM) today announced that its Internet Security Systems (ISS) X-Force® research and development team has discovered and preemptively protected customers from two similar, but distinct vulnerabilities in CA Brightstor ARCserve. This product is a cross-platform backup and recovery solution for small- to medium-sized businesses that protects and helps ensure the availability of critical applications and data. The vulnerabilities discovered by X-Force can be exploited remotely with no user interaction required. Successful exploitation could grant the attacker administrative privileges on the target machine.

“CA Brightstor ARCserve is widely deployed in corporate environments,” said Pete Allor, director of intelligence for IBM Internet Security Systems. “Since it is normally used for the protection and recovery of mission-critical applications, and since these two vulnerabilities are not difficult to exploit, ISS recommends that companies using CA Brightstor ARCserve patch immediately.”

IBM ISS customers have been preemptively protected from these issues since November. By infusing its products and services with security intelligence from X-Force and the unique IBM Virtual Patch® technology, IBM designs its solution to protect customers before their business assets are impacted by online intrusions.

Read the complete Press Release