Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3175

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-3175
Last Modified 07 Apr 2011 12:00:00
Published 01 Aug 2008 10:41:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3175

Summary

Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted message that triggers a buffer overflow.

Vulnerable Systems

Application

  • Ca Arcserve Backup For Laptops And Desktops 11.0

  • Ca Arcserve Backup For Laptops And Desktops 11.1

  • Ca Arcserve Backup For Laptops And Desktops 11.5

  • Ca Brightstor Arcserve Backup 11.0

  • Ca Brightstor Arcserve Backup 11.1

  • Ca Brightstor Arcserve Backup 11.5

  • Ca Desktop Management Suite 11.1

  • Ca Desktop Management Suite 11.2

  • Ca Protection Suites 2

  • Ca Protection Suites 3.0

  • Ca Protection Suites 3.1


References

CONFIRM - https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181721

BID - 30472

XF - ca-abld-rxrpc-bo(44137)

VUPEN - ADV-2008-2286

SECTRACK - 1020590

BUGTRAQ - 20080801 CA ARCserve Backup for Laptops and Desktops Server LGServer Service Vulnerability

SECUNIA - 31319

FULLDISC - 20080731 Assurent VR - CA ARCserve Backup for Laptops and Desktops LGServer Handshake Buffer Overflow


Last Updated: 27 May 2016 10:48:06