PRODUCT: BAB Windows Common                      RELEASE: 11.0

APAR #:  QO64539                                 DATE:    17 FEB 2005

PROBLEM DESCRIPTION: NT   -DISCOVERY    SERVICE   -    SECURITY   UPDATE
                     ----------------------------------------------------
         ***NOTE***  This PTF supersedes QO62768 which has been withdrawn

                     This    update    addresses    potential   security
                     vulnerabilities   caused   by   a  buffer  overflow
                     condition in the  ARCserve Discovery Service.  This
                     patch  should  be  applied  to  all Windows systems
                     where the ARCserve r11.0 base product and any  type
                     of   ARCserve   agent   (file   system,   database,
                     application, open file) is installed.

                     This update  is a  cumulative patch  and supersedes
                     QO62768, which addressed a different  vulnerability
                     in the  discovery service,  originally reported  by
                     iDEFENSE .

                     PREREQS: QO60636

                     MPREREQS: None

                     COREQS: None

                     MCOREQS: None

                     SUPERSEDED: QO62768

HYPER: YES

DISTRIBUTION CODE: A (A=Available, I=Internal)

PROBLEM RESOLUTION:  Follow the instructions below:
This fix Supersedes the  following :
QO62768

This fix requires BrightStor ARCserve Backup Release 11.0 to be
installed.

1. Shutdown all BrightStor ARCserve Backup services.
2. Unzip the fix file as follows:

      CAZIPXP -U QO64539.CAZ

3. Run BAB110WSecurity.exe




PRODUCT(S) AFFECTED: BrightStor ARCserve Backup for Windows Release 11.0

DOWNLOAD INFORMATION:
---------------------
NODE:  ftp.ca.com
PATH:  /CAproducts/unicenter/AXWBAS/nt/GA/QO64539
FILES: QO64539.DFC QO64539.CAZ

UPDATED ROUTINES:
---------------
BAB110WSecurity.exe    32061540 TUE FEB 15 18:29:00 2005