|
CA Products iGateway Service Content-Length Buffer Overflow
|
|
|
|
|
Secunia Advisory:
|
SA18591
|
|
|
Release Date:
|
2006-01-24
|
|
Last Update:
|
2006-01-27
|
|
|
Critical:
|
Moderately critical
|
|
Impact:
|
System access
|
|
Where:
|
From local network
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | BrightStor ARCserve Backup 11.x
BrightStor ARCserve Backup 11.x (for Windows)
BrightStor ARCserve Backup 9.x
BrightStor Enterprise Backup 10.x
BrightStor Process Automation Manager 11.x
BrightStor Storage Resource Manager 11.x
BrightStor Storage Resource Manager 6.x
CA ARCserve Backup for Laptops & Desktops 11.x
CA BrightStor Portal 11.x
CA BrightStor SAN Manager 11.x
CA eTrust Admin 8.x
CA eTrust Audit 1.x
CA eTrust Audit 8.x
CA eTrust Identity Minder 8.x
CA Threat Manager 8.x
CA Unicenter Application Performance Monitor 11.x
CA Unicenter Asset Portfolio Management 11.x
CA Unicenter AutoSys Job Management 11.x
CA Unicenter Management for Microsoft Exchange 11.x
CA Unicenter Management for Web Servers 11.x
CA Unicenter Management for WebLogic 11.x
CA Unicenter Management for WebSphere 11.x
CA Unicenter Service Accounting 11.x
CA Unicenter Service Assure 11.x
CA Unicenter Service Catalog 11.x
CA Unicenter Service Desk 11.x
CA Unicenter Service Desk Knowledge Tools 11.x
CA Unicenter Service Level Management 11.x
CA Unicenter Service Metric Analysis 11.x
CA Unicenter Software Delivery 11.x
CA Unicenter Web Services Distributed Management 11.x
eTrust Directory 8.x
eTrust Secure Content Manager (SCM)
|
| | CVE reference: | CVE-2005-3653 (Secunia mirror)
|
|
|
Want to know the next time vulnerabilities are fixed in this product?
- Companies can be alerted via email and SMS! |
|
|
Description:
Erika Mendoza has reported a vulnerability in various CA products, which can be exploited by malicious people to compromise a vulnerable system.
The vulnerability is caused due to a boundary error in the handling of HTTP data in the iGateway component. This can be exploited to cause a heap-based buffer overflow by supplying a negative value for the "Content-Length" HTTP header.
Successful exploitation allows execution of arbitrary code, but requires access to the iGateway service at port 5250/tcp.
The vulnerability has been reported in versions of iGateway prior to 4.0.051230, which is included with the following products:
BrightStor ARCserve Backup r11.5
BrightStor ARCserve Backup r11.1
BrightStor ARCserve Backup for Windows r11
BrightStor Enterprise Backup 10.5
BrightStor ARCserve Backup v9.01
BrightStor ARCserve Backup Laptop & Desktop r11.1
BrightStor ARCserve Backup Laptop & Desktop r11
BrightStor Process Automation Manager r11.1
BrightStor SAN Manager r11.1
BrightStor SAN Manager r11.5
BrightStor Storage Resource Manager r11.5
BrightStor Storage Resource Manager r11.1
BrightStor Storage Resource Manager 6.4
BrightStor Storage Resource Manager 6.3
BrightStor Portal 11.1
eTrust Audit 1.5 SP2 (iRecorders and ARIES)
eTrust Audit 1.5 SP3 (iRecorders and ARIES)
eTrust Audit 8.0 (iRecorders and ARIES)
eTrust Admin 8.1
eTrust Identity Minder 8.0
eTrust Secure Content Manager (SCM) R8
eTrust Integrated Threat Management (ITM) R8
eTrust Directory, R8.1 (Web Components Only)
Unicenter CA Web Services Distributed Management R11
Unicenter AutoSys JM R11
Unicenter Management for WebLogic / Management for WebSphere R11
Unicenter Service Delivery R11
Unicenter Service Level Management (USLM) R11
Unicenter Application Performance Monitor R11
Unicenter Service Desk R11
Unicenter Service Desk Knowledge Tools R11
Unicenter Asset Portfolio Management R11
Unicenter Service Metric Analysis R11
Unicenter Service Catalog/Assure/Accounting R11
Unicenter MQ Management R11
Unicenter Application Server Management R11
Unicenter Web Server Management R11
Unicenter Exchange Management R11
For BrightStor Storage Resource Manager and BrightStor Portal users, all hosts that have iSponsors deployed to them for managing applications like Veritas Volume Manager and Tivoli TSM are also affected by this vulnerability.
Do you have this product installed on your home computer? Scan using the free Personal Software Inspector. Check if a vulnerable version is installed on computers in your corporate network, scan using the Network Software Inspector.
Solution:
Update the iGateway component to version 4.0.051230 or later.
ftp://ftp.ca.com/pub/iTech/downloads/
Provided and/or discovered by:
Erika Mendoza
Changelog:
2006-01-27: Updated affected products.
Original Advisory:
Computer Associates:
http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp
iDEFENSE:
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
43 Related Secunia Security Advisories, displaying 10
|
|
|
1. CA Secure Content Manager Multiple Vulnerabilities
|
|
2. CA ARCserve Backup Multiple Vulnerabilities
|
|
3. CA Secure Content Manager eCSqdmn Denial of Service Vulnerabilities
|
|
4. CA ARCserve Backup Discovery Service Denial of Service
|
|
5. CA Products DSM gui_cm_ctrls ActiveX Control Code Execution
|
|
6. CA Products Alert Notification Server Multiple Vulnerabilities
|
|
7. CA BrightStor ARCserve Backup "ListCtrl" ActiveX Control Buffer Overflow
|
|
8. CA Products Ingres User Authentication Security Issue
|
|
9. CA BrightStor ARCServe Backup Multiple Vulnerabilities
|
|
10. CA Message Queuing Server Buffer Overflow Vulnerability
|
Show all related advisories
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|
