CVE-2008-3175

Severity

99%

Complexity

99%

Confidentiality

165%

Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted message that triggers a buffer overflow.

Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted message that triggers a buffer overflow.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

Computer Associates

First reported 16 years ago

2008-08-01 14:41:00

Last updated 6 years ago

2018-10-11 20:47:00

Affected Software

Computer Associates BrightStor ARCserve Backup 11.1

11.1

Computer Associates BrightStor ARCserve Backup 11.5

11.5

Computer Associates Desktop Management Suite 11.1

11.1

Computer Associates Desktop Management Suite 11.2

11.2

References

20080731 Assurent VR - CA ARCserve Backup for Laptops and Desktops LGServer Handshake Buffer Overflow

31319

Vendor Advisory

20080801 CA ARCserve Backup for Laptops and Desktops Server LGServer Service Vulnerability

30472

Patch

1020590

ADV-2008-2286

Vendor Advisory

ca-abld-rxrpc-bo(44137)

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181721

Patch, Vendor Advisory

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.