ArcServeのDesktop and Laptopsという製品に、認証系に脆弱性が存在して、認証をパスできて、任意のコードをSYSTEM権限で実行できるそうです。

Remote exploitation of an authentication bypass vulnerability in Computer Associates Inc.'s ARCServe Backup for Laptops and Desktops allows attackers to execute arbitrary code with SYSTEM privileges.
This vulnerability specifically exists since the command handlers that service network requests do not check to see if the peer is authenticated.

関連URL

• http://www.securityfocus.com/archive/1/480280