VUPEN Security - CA Products Code Execution and Denial of Service Vulnerabilities / Exploit (Security Advisories)

	Contact \| Site en Français

Vulnerabilities & Threats

VUPEN Security Advisories

Linux Security Advisories

Threat Watch Blog

Zero-Day Monitor

Search Engine

Mailing List & RSS

>> CA Products Code Execution and Denial of Service Vulnerabilities

Title : CA Products Code Execution and Denial of Service Vulnerabilities
VUPEN ID : VUPEN/ADV-2008-2777
CVE ID : CVE-2008-4397 - CVE-2008-4398 - CVE-2008-4399 - CVE-2008-4400
CWE ID : CWE-20 - CWE-22
Rated as : Critical

Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2008-10-09

Technical Description

Multiple vulnerabilities have been identified in various CA products, which could allow attackers to cause a denial of service or compromise a vulnerable system.

The first issue is caused by a directory traversal error in the message engine service when processing certain RPC call parameters, which could allow attackers to execute arbitrary commands.

The second vulnerability is caused by an error in the tape engine service when processing malformed requests, which could be exploited by attackers to cause a crash.

The third issue is caused by an error in the database engine service when processing malformed requests, which could be exploited by attackers to cause a crash.

The fourth vulnerability is caused due to insufficient validation of authentication credentials, which could allow attackers to crash multiple services via a malformed request.

Affected Products

CA ARCserve Backup r12.0 Windows
CA ARCserve Backup r11.5 Windows
CA ARCserve Backup r11.1 Windows
CA Server Protection Suite r2
CA Business Protection Suite r2
CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2
CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2

Solution

CA ARCserve Backup r12.0 Windows - Apply Service Pack 1 (RO01340) :
https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=search&searchID=RO01340

CA ARCserve Backup r11.5 Windows - Apply patch RO02398 :
https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=search&searchID=RO02398

CA ARCserve Backup r11.1 Windows - apply patch RO02396 :
https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=search&searchID=RO02396

CA Protection Suites r2 - Apply patch RO02398 :
https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=search&searchID=RO02398

References

http://www.vupen.com/english/advisories/2008/2777
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=188143

Credits

Vulnerabilities reported by Haifei Li (Fortinet FortiGuard Global Security Research Team) and Vulnerability Research Team of Assurent Secure Technologies (TELUS Company)

ChangeLog

2008-10-09 : Initial release

Vulnerability Management

Subscribe to VUPEN VNS and receive real-time alerts when new advisories or patches relevant to your systems and network configurations are available.

Feedback

If you have additional information or corrections for this security advisory please submit them via our contact form.

Latest News

>> 2009-07-06