Technical Description

Multiple vulnerabilities were identified in various Computer Associates products, which may be exploited by remote or local attackers to execute arbitrary commands or cause a denial of service.

The first issue is due to an unspecified error in the CAM messaging sub-component, which could be exploited by remote attackers to cause a denial of service.

The second flaw is due to a buffer overflow error in the CA Message Queuing Server that does not properly handle specially crafted requests, which could be exploited by remote attackers to execute arbitrary commands with SYSTEM privileges.

The third vulnerability is due to an unspecified error in the CAFT application that does not properly handle specially crafted messages, which could be exploited by attackers to execute arbitrary commands.



Affected Products

CA AdviseIT 2.4
CA Advantage Data Transport 3.0
CA BrightStor SAN Manager 1.1
CA BrightStor SAN Manager 1.1 SP1
CA BrightStor SAN Manager 1.1 SP2
CA BrightStor SAN Manager 11.1
CA BrightStor Portal 11.1
CA CleverPath OLAP 5.1
CA CleverPath ECM 3.5
CA CleverPath Predictive Analysis Server 2.0
CA CleverPath Predictive Analysis Server 3.0
CA CleverPath Aion 10.0
CA eTrust Admin 2.01
CA eTrust Admin 2.04
CA eTrust Admin 2.07
CA eTrust Admin 2.09
CA eTrust Admin 8.0
CA eTrust Admin 8.1
CA Unicenter Application Performance Monitor 3.0
CA Unicenter Application Performance Monitor 3.5
CA Unicenter Asset Management 3.1
CA Unicenter Asset Management 3.2
CA Unicenter Asset Management 3.2 SP1
CA Unicenter Asset Management 3.2 SP2
CA Unicenter Asset Management 4.0
CA Unicenter Asset Management 4.0 SP1
CA Unicenter Data Transport Option 2.0
CA Unicenter Enterprise Job Manager 1.0 SP1
CA Unicenter Enterprise Job Manager 1.0 SP2
CA Unicenter Jasmine 3.0
CA Unicenter Management for WebSphere MQ 3.5
CA Unicenter Management for Microsoft Exchange 4.0
CA Unicenter Management for Microsoft Exchange 4.1
CA Unicenter Management for Lotus Notes/Domino 4.0
CA Unicenter Management for Web Servers 5
CA Unicenter Management for Web Servers 5.0.1
CA Unicenter NSM 3.0, 3.1
CA Unicenter NSM Wireless Network Management Option 3.0
CA Unicenter Remote Control 6.0, 6.0 SP1
CA Unicenter Service Level Management 3.0
CA Unicenter Service Level Management 3.0.1
CA Unicenter Service Level Management 3.0.2
CA Unicenter Service Level Management 3.5
CA Unicenter Software Delivery 3.0
CA Unicenter Software Delivery 3.1
CA Unicenter Software Delivery 3.1 SP1
CA Unicenter Software Delivery 3.1 SP2
CA Unicenter Software Delivery 4.0
CA Unicenter Software Delivery 4.0 SP1
CA Unicenter TNG 2.1
CA Unicenter TNG 2.2
CA Unicenter TNG 2.4
CA Unicenter TNG 2.4.2
CA Unicenter TNG JPN 2.2
CA Unicenter Performance Management for OpenVMS r2.4 SP3

Solution

Fixes for CAM v1.11 prior to Build 29_13 :
http://supportconnectw.ca.com/public/ca_common_docs/camsecurity_cam111fixes.asp
Fixes for CAM v1.07 prior to Build 220_13 :
http://supportconnectw.ca.com/public/ca_common_docs/camsecurity_cam107fixes.asp
Fixes for CAM v1.05 (any version) :
http://supportconnectw.ca.com/public/ca_common_docs/camsecurity_cam107fixes.asp

References

http://www.vupen.com/english/advisories/2005/1482
http://supportconnectw.ca.com/public/ca_common_docs/camsecurity_notice.asp

ChangeLog

2005-08-21 : Initial release
2005-10-19 : Exploit available

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.