|
 |
|
CA iGateway Debug Mode HTTP GET Request Buffer Overflow
|
|
|
|
|
Secunia Advisory:
|
SA17085
|
|
|
Release Date:
|
2005-10-11
|
|
Last Update:
|
2005-10-19
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | BrightStor ARCserve Backup 11.x
BrightStor ARCserve Backup 11.x (for Windows)
BrightStor ARCserve Backup 9.x
BrightStor Enterprise Backup 10.x
BrightStor Process Automation Manager 11.x
BrightStor Storage Resource Manager 11.x
BrightStor Storage Resource Manager 6.x
CA Advantage Data Transformer 2.x
CA AllFusion Harvest Change Manager 7.x
CA ARCserve Backup for Laptops & Desktops 11.x
CA BrightStor Portal 11.x
CA BrightStor SAN Manager 11.x
CA eTrust Admin 8.x
CA eTrust Audit 1.x
CA eTrust Audit 8.x
CA eTrust Identity Minder 8.x
CA Unicenter Service Fulfillment 2.x
eTrust Secure Content Manager (SCM)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
Erika Mendoza has reported a vulnerability in CA iGateway, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error when parsing HTTP GET requests. This can be exploited to cause a buffer overflow and allows arbitrary code execution.
Successful exploitation requires that debug mode is enabled.
The vulnerability has been reported in versions of iGateway prior to 4.0.050615, which is included with the following products:
* Advantage Data Transformer (ADT) R2.2
* Harvest Change Manager R7.1
* BrightStor ARCserve Backup r11.5
* BrightStor ARCserve Backup r11.1
* BrightStor ARCserve Backup for Windows r11
* BrightStor Enterprise Backup 10.5
* BrightStor ARCserve Backup v9.01
* BrightStor ARCserve Backup Laptop & Desktop r11.1
* BrightStor ARCserve Backup Laptop & Desktop r11
* BrightStor Process Automation Manager r11.1
* BrightStor SAN Manager r11.1
* BrightStor SAN Manager r11.5
* BrightStor Storage Resource Manager r11.5
* BrightStor Storage Resource Manager r11.1
* BrightStor Storage Resource Manager 6.4
* BrightStor Storage Resource Manager 6.3
* BrightStor Portal 11.1
* eTrust Audit 1.5 SP2 (iRecorders and ARIES)
* eTrust Audit 1.5 SP3 (iRecorders and ARIES)
* eTrust Audit 8.0 (iRecorders and ARIES)
* eTrust Admin 8.0
* eTrust Admin 8.1
* eTrust Identity Minder 8.0
* eTrust Secure Content Manager (SCM) R8
* eTrust Web Service Security R8
* eTrust Integrated Threat Management (ITM) R8
* Unicenter CA Web Services Distributed Management R11
* Unicenter AutoSys JM R11
* Unicenter Management for WebLogic / Management for WebSphere R11
* Unicenter Service Delivery R11
* Unicenter Service Level Management (USLM) R11
* Unicenter Application Performance Monitor R11
* Unicenter Service Desk R11
* Unicenter Service Desk Knowledge Tools R11
* Unicenter Service Fulfillment 2.2
* Unicenter Service Fulfillment R11
* Unicenter Asset Portfolio Management R11
* Unicenter Service Matrix Analysis R11
* Unicenter Service Catalog/Fulfillment/Accounting R11
* Unicenter MQ Management R11
* Unicenter Application Server Management R11
* Unicenter Web Server Management R11
* Unicenter Exchange Management R11
For BrightStor Storage Resource Manager and BrightStor Portal users, all hosts that have iSponsors deployed to them for managing applications like Veritas Volume Manager and Tivoli TSM are also affected by this vulnerability.
Note: Exploit code for this vulnerability is publicly available.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution:
Update to iGateway version 4.0.050623 or later.
ftp://ftp.ca.com/pub/iTech/downloads/
Provided and/or discovered by:
Erika Mendoza
Changelog:
2005-10-14: Vendor releases fixed version. Updated "Description", "Solution", "Solution Status", and "Software Information".
2005-10-19: Added patch download link to "Solution" section.
Original Advisory:
http://www3.ca.com/threatinfo/vulninfo/vuln.aspx?id=33485
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
41 Related Secunia Security Advisories, displaying 10
|
|
|
1. CA Secure Content Manager Multiple Vulnerabilities
|
|
2. CA ARCserve Backup Multiple Vulnerabilities
|
|
3. CA Secure Content Manager eCSqdmn Denial of Service Vulnerabilities
|
|
4. CA ARCserve Backup Discovery Service Denial of Service
|
|
5. CA Products DSM gui_cm_ctrls ActiveX Control Code Execution
|
|
6. CA Products Alert Notification Server Multiple Vulnerabilities
|
|
7. CA BrightStor ARCserve Backup "ListCtrl" ActiveX Control Buffer Overflow
|
|
8. CA Products Ingres User Authentication Security Issue
|
|
9. CA BrightStor ARCServe Backup Multiple Vulnerabilities
|
|
10. CA Message Queuing Server Buffer Overflow Vulnerability
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
|
|
Secunia PSI
Scan | Patch | Track
Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|
