Vulnerabilities > CVE-2008-3175 - Numeric Errors vulnerability in multiple products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted message that triggers a buffer overflow.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 4 | |
| Application | 11 |
Common Weakness Enumeration (CWE)
Nessus
| NASL family | Windows |
| NASL id | CA_BABLD_LGSERVER_RCE.NASL |
| description | According to the version of rxRPC.dll installed on the remote host, the Computer Associates product is affected by an integer underflow vulnerability that could allow a remote attacker to cause the LGServer service to crash or execute arbitrary code. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 69316 |
| published | 2013-08-13 |
| reporter | This script is Copyright (C) 2013-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/69316 |
| title | CA ARCserve Backup for Laptops and Desktops Server, CA Protection Suite, and CA Desktop Management Suite Integer Underflow |
Saint
| bid | 30472 |
| description | CA ARCserve Backup LGServer handshake buffer overflow |
| id | misc_arcservecategory_lgserverhandshake |
| osvdb | 47545 |
| title | brightstor_arcserve_lgserver_handshake |
| type | remote |
Seebug
| bulletinFamily | exploit |
| description | BUGTRAQ ID: 30472 CVE(CAN) ID: CVE-2008-3175 CA的ARCserve Backup可为各种平台的服务器提供备份和恢复保护功能。 CA ARCserve Backup for Laptops and Desktops的LGServer服务在处理入站消息时存在整数溢出漏洞,如果未经认证的远程攻击者向TCP 1900端口上的LGServer服务提交了恶意请求的话,就会触发这个溢出,导致拒绝服务或执行任意指令。 Computer Associates Protection Suites 3.1 Computer Associates Protection Suites 3 Computer Associates Protection Suites 2 Computer Associates ARCserve Backup (L&D) r11.5 Computer Associates ARCserve Backup (L&D) r11.1 SP2 Computer Associates ARCserve Backup (L&D) r11.1 SP1 Computer Associates ARCserve Backup (L&D) r11.1 Computer Associates ARCserve Backup (L&D) r11.0 Computer Associates Desktop Management Suite 11.2 Computer Associates Desktop Management Suite 11.1 Computer Associates ------------------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载: <a href=https://support.ca.com/irj/portal/anonymous/solndtls?aparNo=QI85497&os=WINDOWS&actionID=3 target=_blank>https://support.ca.com/irj/portal/anonymous/solndtls?aparNo=QI85497&os=WINDOWS&actionID=3</a> <a href=https://support.ca.com/irj/portal/anonymous/solndtls?aparNo=RO00912&os=WINDOWS&actionID=3 target=_blank>https://support.ca.com/irj/portal/anonymous/solndtls?aparNo=RO00912&os=WINDOWS&actionID=3</a> <a href=https://support.ca.com/irj/portal/anonymous/solndtls?aparNo=RO00912&os=WINDOWS&actionID=3#solndownloads target=_blank>https://support.ca.com/irj/portal/anonymous/solndtls?aparNo=RO00912&os=WINDOWS&actionID=3#solndownloads</a> <a href=https://support.ca.com/irj/portal/anonymous/solndtls?aparNo=RO01150&os=WINDOWS&actionID=3 target=_blank>https://support.ca.com/irj/portal/anonymous/solndtls?aparNo=RO01150&os=WINDOWS&actionID=3</a> |
| id | SSV:3756 |
| last seen | 2017-11-19 |
| modified | 2008-08-03 |
| published | 2008-08-03 |
| reporter | Root |
| title | CA ARCserve Backup for Laptops and Desktops整数溢出漏洞 |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2008-July/063594.html
- http://secunia.com/advisories/31319
- http://www.securityfocus.com/archive/1/495020/100/0/threaded
- http://www.securityfocus.com/bid/30472
- http://www.securitytracker.com/id?1020590
- http://www.vupen.com/english/advisories/2008/2286
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44137
- https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181721