|
CA DM Deployment Common Component Denial of Service
|
|
|
|
|
Secunia Advisory:
|
SA18531
|
|
|
Release Date:
|
2006-01-18
|
|
Last Update:
|
2006-01-25
|
|
|
Critical:
|

Less critical
|
|
Impact:
|
DoS
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Workaround
|
|
| Software: | CA ARCserve Backup for Laptops & Desktops 11.x CA Desktop Protection Suite r2 CA Server Protection Suite r2 CA Unicenter Remote Control 6.x
|
| | CVE reference: | CVE-2006-0306 (Secunia mirror) CVE-2006-0307 (Secunia mirror)
|
|
|
|
|
|
Description: Two vulnerabilities have been reported in various CA products, which can be exploited by malicious people to cause a DoS (Denial of Service).
1) The DM Primer (DMPrimer) service fails to handle the WSAEMESGSIZE error condition when an overly large UDP packet is received. This can be exploited to cause the service to stop responding.
2) An error in DM Primer in the handling of certain unrecognized network messages can be exploited to cause high CPU utilisation and excessive growth of the DM Primer log file.
The vulnerabilities have been reported in DM Primer version 1.4.154 and 1.4.155 distributed with following products:
* BrightStor Mobile Backup r4.0
* BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1
* Unicenter Remote Control 6.0, 6.0 SP1
* CA Desktop Protection Suite r2
* CA Server Protection Suite r2
* CA Business Protection Suite r2
* CA Business Protection Suite for Microsoft Small Business Server Standard Edition r2
* CA Business Protection Suite for Microsoft Small Business Server Premium Edition r2
* CA Business Protection Suite for Midsize Business for Windows r2
Solution: The vendor recommends uninstalling the DM Primer service since it is only utilised for the initial installation of the products. See vendor's original advisory for instructions.
Provided and/or discovered by: Cengiz Aykanat and Karma
Changelog: 2006-01-25: Added CVE references.
Original Advisory: Computer Associates:
http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp
Design Folks:
http://www.designfolks.com.au/karma/DMPrimer/
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
18 Related Secunia Security Advisories, displaying 10
|
|
|
1. CA ARCserve Backup Multiple Vulnerabilities
|
|
2. CA ARCserve Backup Discovery Service Denial of Service
|
|
3. CA Products DSM gui_cm_ctrls ActiveX Control Code Execution
|
|
4. CA BrightStor ARCserve Backup "ListCtrl" ActiveX Control Buffer Overflow
|
|
5. CA Products Ingres User Authentication Security Issue
|
|
6. CA Message Queuing Server Buffer Overflow Vulnerability
|
|
7. CA Products Ingres Database Vulnerabilities
|
|
8. CA ARCserve Backup for Laptops & Desktops Multiple Vulnerabilities
|
|
9. CA Anti-Virus Engine CAB Archive Processing Buffer Overflows
|
|
10. BrightStor ARCserve Backup for Laptops & Desktops Vulnerabilities
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|