|
|
|
|
CA Products iGateway Service Content-Length Buffer Overflow
|
|
Secunia Advisory:
|
SA18591
|
|
|
Release Date:
|
2006-01-24
|
|
Last Update:
|
2006-01-27
|
|
Popularity:
|
12,729 views
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
System access
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | BrightStor ARCserve Backup 11.x
BrightStor ARCserve Backup 11.x (for Windows)
BrightStor ARCserve Backup 9.x
BrightStor Enterprise Backup 10.x
BrightStor Process Automation Manager 11.x
BrightStor Storage Resource Manager 11.x
BrightStor Storage Resource Manager 6.x
CA ARCserve Backup for Laptops & Desktops 11.x
CA BrightStor Portal 11.x
CA BrightStor SAN Manager 11.x
CA eTrust Admin 8.x
CA eTrust Audit 1.x
CA eTrust Audit 8.x
CA eTrust Identity Minder 8.x
CA Threat Manager 8.x
CA Unicenter Application Performance Monitor 11.x
CA Unicenter Asset Portfolio Management 11.x
CA Unicenter AutoSys Job Management 11.x
CA Unicenter Management for Microsoft Exchange 11.x
CA Unicenter Management for Web Servers 11.x
CA Unicenter Management for WebLogic 11.x
CA Unicenter Management for WebSphere 11.x
CA Unicenter Service Accounting 11.x
CA Unicenter Service Assure 11.x
CA Unicenter Service Catalog 11.x
CA Unicenter Service Desk 11.x
CA Unicenter Service Desk Knowledge Tools 11.x
CA Unicenter Service Level Management 11.x
CA Unicenter Service Metric Analysis 11.x
CA Unicenter Software Delivery 11.x
CA Unicenter Web Services Distributed Management 11.x
eTrust Directory 8.x
eTrust Secure Content Manager (SCM)
|
|
|
Subscribe:
|
Instant alerts on relevant vulnerabilities 
|
| | CVE reference: | CVE-2005-3653
|
|
Description:
Erika Mendoza has reported a vulnerability in various CA products, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error in the handling of HTTP data in the iGateway component. This can be exploited to cause a heap-based buffer overflow by supplying a negative value for the "Content-Length" HTTP header.
Successful exploitation allows execution of arbitrary code, but requires access to the iGateway service at port 5250/tcp.
The vulnerability has been reported in versions of iGateway prior to 4.0.051230, which is included with the following products:
BrightStor ARCserve Backup r11.5
BrightStor ARCserve Backup r11.1
BrightStor ARCserve Backup for Windows r11
BrightStor Enterprise Backup 10.5
BrightStor ARCserve Backup v9.01
BrightStor ARCserve Backup Laptop & Desktop r11.1
BrightStor ARCserve Backup Laptop & Desktop r11
BrightStor Process Automation Manager r11.1
BrightStor SAN Manager r11.1
BrightStor SAN Manager r11.5
BrightStor Storage Resource Manager r11.5
BrightStor Storage Resource Manager r11.1
BrightStor Storage Resource Manager 6.4
BrightStor Storage Resource Manager 6.3
BrightStor Portal 11.1
eTrust Audit 1.5 SP2 (iRecorders and ARIES)
eTrust Audit 1.5 SP3 (iRecorders and ARIES)
eTrust Audit 8.0 (iRecorders and ARIES)
eTrust Admin 8.1
eTrust Identity Minder 8.0
eTrust Secure Content Manager (SCM) R8
eTrust Integrated Threat Management (ITM) R8
eTrust Directory, R8.1 (Web Components Only)
Unicenter CA Web Services Distributed Management R11
Unicenter AutoSys JM R11
Unicenter Management for WebLogic / Management for WebSphere R11
Unicenter Service Delivery R11
Unicenter Service Level Management (USLM) R11
Unicenter Application Performance Monitor R11
Unicenter Service Desk R11
Unicenter Service Desk Knowledge Tools R11
Unicenter Asset Portfolio Management R11
Unicenter Service Metric Analysis R11
Unicenter Service Catalog/Assure/Accounting R11
Unicenter MQ Management R11
Unicenter Application Server Management R11
Unicenter Web Server Management R11
Unicenter Exchange Management R11
For BrightStor Storage Resource Manager and BrightStor Portal users, all hosts that have iSponsors deployed to them for managing applications like Veritas Volume Manager and Tivoli TSM are also affected by this vulnerability.
Solution:
Update the iGateway component to version 4.0.051230 or later.
ftp://ftp.ca.com/pub/iTech/downloads/
Provided and/or discovered by:
Erika Mendoza
Changelog:
2006-01-27: Updated affected products.
Original Advisory:
Computer Associates:
http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp
iDEFENSE:
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376
|
|
|
Track this Secunia Advisory
|
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released.
Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.
|
|
|
About this Secunia Advisory
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
Today
|
New advisories:
|
6 |
|
New vulnerabilities:
|
7 |
|
Updated advisories:
|
11 |
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
5th Sep, 2008
|
New advisories:
|
14 |
|
New vulnerabilities:
|
18 |
|
Updated advisories:
|
22 |
|
|
|
|
|
|
|
|
|
|
|
|
|
 Solutions | More...
|
|
|
|
Send Feedback to Secunia
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
|
