PRODUCT: BrightStor ARCserve Backup for NetWare  RELEASE: 9.0

APAR #:  QO64541                                 DATE:    17 FEB 2005

PROBLEM DESCRIPTION: NW   -DISCOVERY    SERVICE   -    SECURITY   UPDATE
                     ----------------------------------------------------
         ***NOTE***  This PTF supersedes QO62772 which has been withdrawn

                     This    update    addresses    potential   security
                     vulnerabilities   caused   by   a  buffer  overflow
                     condition in the  ARCserve Discovery Service.  This
                     patch  should  be  applied  to  all Windows systems
                     where the ARCserve v9 base product and any type  of
                     ARCserve agent (file system, database, application,
                     open file) is installed.

                     This update  is a  cumulative patch  and supersedes
                     QO62772, which addressed a different  vulnerability
                     in  the  discovery  service,originally  reported by
                     iDEFENSE .

                     PREREQS: None

                     MPREREQS: None

                     COREQS: None

                     MCOREQS: None

                     SUPERSEDED: QO62772

HYPER: YES

DISTRIBUTION CODE: A (A=Available, I=Internal)

PROBLEM RESOLUTION:  Follow the instructions below:
This fix Supersedes the  following :
QO62772

This fix requires BrightStor ARCserve Backup version 9 for NetWare to
be installed.


1. Shutdown BrightStor ARCserve Backup.

2. Unzip the fix file as follows:


CAZIPXP -U QO64541.CAZ


3. Run BAB901NSecurity.exe




PRODUCT(S) AFFECTED: ArcserveIT Enterprise NW               Release 9.0

DOWNLOAD INFORMATION:
---------------------
NODE:  ftp.ca.com
PATH:  /CAproducts/unicenter/AXNBAS/netware/0212/QO64541
FILES: QO64541.DJB QO64541.CAZ

UPDATED ROUTINES:
---------------
BAB901NSecurity.exe    6120544 WED FEB 16 15:36:00 2005