A vulnerability allows attackers to arbitrarily access and modify the file system and registry of vulnerable installations of Computer Associates BrightStor ARCserve Backup. Authentication is not required to exploit this vulnerability.
You can download this advisory from the following link: https://packetstormsecurity.com/files/download/61263/ZDI-07-069.txt
Source: https://packetstormsecurity.com/files/61263/Zero-Day-Initiative-Advisory-07-069.html