exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

CA Security Advisory 35515

CA Security Advisory 35515
Posted Jul 20, 2007
Authored by Ken Williams, Computer Associates | Site www3.ca.com

Multiple CA products that utilize Alert service functionality contain multiple vulnerabilities. The vulnerabilities are due to insufficient bounds checking on received data by certain RPC procedures. An attacker can exploit these buffer overflows to execute arbitrary code or cause service failure.

tags | advisory, overflow, arbitrary, vulnerability
advisories | CVE-2007-3825
SHA-256 | dff03d4b04f6fb38db9efcc99d514db64917edf808004035f18a70b3cba857e0

CA Security Advisory 35515

Change Mirror Download

Title: [CAID 35515]: CA Products Alert Service RPC Procedure
Buffer Overflow Vulnerabilities

CA Vuln ID (CAID): 35515

CA Advisory Date: 2007-07-17

Reported By: Anonymous researcher working with the iDefense VCP

Impact: Remote attacker can cause a denial of service or execute
arbitrary code.

Summary: Multiple CA products that utilize Alert service
functionality contain multiple vulnerabilities. The
vulnerabilities, CVE-2007-3825, are due to insufficient bounds
checking on received data by certain RPC procedures. An attacker
can exploit these buffer overflows to execute arbitrary code or
cause service failure.

Mitigating Factors: None

Severity: CA has given these vulnerabilities a High risk rating.

Affected Products:
CA Threat Manager for the Enterprise (formerly eTrust Integrated
Threat Management) r8
CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) r8
CA Protection Suites r3
BrightStor ARCserve Backup r11.5
BrightStor ARCserve Backup r11.1
BrightStor ARCserve Backup r11 for Windows
BrightStor Enterprise Backup r10.5
BrightStor ARCserve Backup v9.01
BrightStor ARCserve Client agent for Windows

Affected Platforms:
Microsoft Windows

Status and Recommendation:
CA recommends that customers apply the update to address the
vulnerabilities. The updated Alert service must be manually
installed. For all affected products, apply QO89817.
https://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-secnotice.asp

How to determine if you are affected:
1. Using Windows Explorer, locate the file "alert.exe". By
default, the file is located in the
"C:\Program Files\CA\SharedComponents\Alert" directory.
2. Right click on the file and select Properties.
3. Select the Version tab.
4. If the "alert.exe" file version is less than 8.0.255.0, the
installation is vulnerable.

Workaround: None

References (URLs may wrap):
CA SupportConnect:
https://supportconnect.ca.com/
Security Notice for CA products running the Alert service
https://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-secnotice.asp
Solution Document Reference APARs:
QO89817
CA Security Advisor posting:
CA Products Alert Service RPC Procedures Buffer Overflow
Vulnerabilities
https://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149081
CA Vuln ID (CAID): 35515
https://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35515
Reported By: iDefense
iDefense Advisory:
Computer Associates Alert Notification Server Multiple Buffer
Overflow Vulnerabilities
https://labs.idefense.com/intelligence/vulnerabilities/display.php?id=561
CVE References:
CVE-2007-3825
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-3825
OSVDB References: Pending
https://osvdb.org/

Changelog for this advisory:
v1.0 - Initial Release

Customers who require additional information should contact CA
Technical Support at https://supportconnect.ca.com.

For technical questions or comments related to this advisory,
please send email to vuln AT ca DOT com.

If you discover a vulnerability in CA products, please report your
findings to vuln AT ca DOT com, or utilize our "Submit a
Vulnerability" form.
URL: https://www.ca.com/us/securityadvisor/vulninfo/submit.aspx


Regards,
Ken Williams ; 0xE2941985
Director, CA Vulnerability Research

CA, 1 CA Plaza, Islandia, NY 11749

Contact https://www.ca.com/us/contact/
Legal Notice https://www.ca.com/us/legal/
Privacy Policy https://www.ca.com/us/privacy/
Copyright (c) 2007 CA. All rights reserved.
Login or Register to add favorites

File Archive:

November 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    30 Files
  • 2
    Nov 2nd
    0 Files
  • 3
    Nov 3rd
    0 Files
  • 4
    Nov 4th
    12 Files
  • 5
    Nov 5th
    44 Files
  • 6
    Nov 6th
    18 Files
  • 7
    Nov 7th
    9 Files
  • 8
    Nov 8th
    8 Files
  • 9
    Nov 9th
    3 Files
  • 10
    Nov 10th
    0 Files
  • 11
    Nov 11th
    14 Files
  • 12
    Nov 12th
    20 Files
  • 13
    Nov 13th
    63 Files
  • 14
    Nov 14th
    18 Files
  • 15
    Nov 15th
    8 Files
  • 16
    Nov 16th
    0 Files
  • 17
    Nov 17th
    0 Files
  • 18
    Nov 18th
    18 Files
  • 19
    Nov 19th
    7 Files
  • 20
    Nov 20th
    0 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    0 Files
  • 23
    Nov 23rd
    0 Files
  • 24
    Nov 24th
    0 Files
  • 25
    Nov 25th
    0 Files
  • 26
    Nov 26th
    0 Files
  • 27
    Nov 27th
    0 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close