CVE-2008-1472

Stack-based buffer overflow in the ListCtrl ActiveX Control (ListCtrl.ocx), as used in multiple CA products including BrightStor ARCserve Backup R11.5, Desktop Management Suite r11.1 through r11.2, and Unicenter products r11.1 through r11.2, allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long argument to the AddColumn method.

CVSS v2.0 9.3 HIGH

9.3^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:M/Au:N/C:C/I:C/A:C

Exploitability : 8.6 / Impact : 10.0

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://www.securityfocus.com/bid/28268	Exploit
http://secunia.com/advisories/29408	Vendor Advisory
http://community.ca.com/blogs/casecurityresponseblog/archive/2008/3/28.aspx
http://www.securitytracker.com/id?1019617
http://www.vupen.com/english/advisories/2008/0902/references	Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/41225
https://www.exploit-db.com/exploits/5264
http://www.securityfocus.com/archive/1/490263/100/0/threaded
http://www.securityfocus.com/archive/1/489893/100/0/threaded

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:computer_associates:brightstor_arcserve_backup_laptops_desktops:11.5:::::::*
	cpe:2.3:a:unicenter:asset_management:r11.1:c1::::::
	cpe:2.3:a:unicenter:asset_management:r11.1:ga::::::
	cpe:2.3:a:unicenter:desktop_management_bundle:r11.2:::::::*
	cpe:2.3:a:unicenter:desktop_management_bundle:r11.2:a::::::
	cpe:2.3:a:unicenter:software_delivery:r11.1:a::::::
	cpe:2.3:a:unicenter:software_delivery:r11.1:c1::::::
	cpe:2.3:a:computer_associates:unicenter_dsm_r11_list_control_atx:11.2.3.1895:::::::*
	cpe:2.3:a:unicenter:asset_management:r11.1:a::::::
	cpe:2.3:a:unicenter:desktop_management_bundle:r11.1:c1::::::
	cpe:2.3:a:unicenter:desktop_management_bundle:r11.1:ga::::::
	cpe:2.3:a:unicenter:remote_control:r11.2:::::::*
	cpe:2.3:a:unicenter:desktop_management_bundle:r11.2:c1::::::
	cpe:2.3:a:unicenter:desktop_management_bundle:r11.1:a::::::
	cpe:2.3:a:unicenter:asset_management:r11.2:a::::::
	cpe:2.3:a:unicenter:remote_control:r11.2:c1::::::
	cpe:2.3:a:unicenter:software_delivery:r11.2:c1::::::
	cpe:2.3:a:unicenter:software_delivery:r11.2:a::::::
	cpe:2.3:a:computer_associates:desktop_management_suite:r11.1:ga::::::
	cpe:2.3:a:unicenter:remote_control:r11.1:c1::::::
	cpe:2.3:a:unicenter:asset_management:r11.2:c1::::::
	cpe:2.3:a:unicenter:asset_management:r11.2:::::::*
	cpe:2.3:a:unicenter:remote_control:r11.1:a::::::
	cpe:2.3:a:computer_associates:desktop_management_suite:r11.1:c1::::::
	cpe:2.3:a:unicenter:remote_control:r11.1:ga::::::
	cpe:2.3:a:unicenter:software_delivery:r11.2:::::::*
	cpe:2.3:a:unicenter:software_delivery:r11.1:ga::::::
	cpe:2.3:a:unicenter:remote_control:r11.2:a::::::
	cpe:2.3:a:computer_associates:desktop_management_suite:r11.1:a::::::
	cpe:2.3:a:computer_associates:desktop_management_suite:r11.2:::::::*

Information

Published : 2008-03-24 15:44

Updated : 2018-10-11 13:34

NVD link : CVE-2008-1472

Mitre link : CVE-2008-1472

JSON object : View

CWE

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

Products Affected

unicenter

asset_management
software_delivery
remote_control
desktop_management_bundle

computer_associates

desktop_management_suite
unicenter_dsm_r11_list_control_atx
brightstor_arcserve_backup_laptops_desktops

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securityfocus.com/bid/28268", "name": "28268", "tags": ["Exploit"], "refsource": "BID"}, {"url": "http://secunia.com/advisories/29408", "name": "29408", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://community.ca.com/blogs/casecurityresponseblog/archive/2008/3/28.aspx", "name": "http://community.ca.com/blogs/casecurityresponseblog/archive/2008/3/28.aspx", "tags": [], "refsource": "CONFIRM"}, {"url": "http://www.securitytracker.com/id?1019617", "name": "1019617", "tags": [], "refsource": "SECTRACK"}, {"url": "http://www.vupen.com/english/advisories/2008/0902/references", "name": "ADV-2008-0902", "tags": ["Vendor Advisory"], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/41225", "name": "ca-arcserve-listctrl-bo(41225)", "tags": [], "refsource": "XF"}, {"url": "https://www.exploit-db.com/exploits/5264", "name": "5264", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "http://www.securityfocus.com/archive/1/490263/100/0/threaded", "name": "20080328 CA Multiple Products DSM ListCtrl ActiveX Control Buffer Overflow Vulnerability", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.securityfocus.com/archive/1/489893/100/0/threaded", "name": "20080320 Note about recently publicized CA BrightStor ActiveX exploit code", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Stack-based buffer overflow in the ListCtrl ActiveX Control (ListCtrl.ocx), as used in multiple CA products including BrightStor ARCserve Backup R11.5, Desktop Management Suite r11.1 through r11.2, and Unicenter products r11.1 through r11.2, allows remote attackers to execute arbitrary code or cause a denial of service (crash) via a long argument to the AddColumn method."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-119"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2008-1472", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 9.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "MEDIUM", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "severity": "HIGH", "impactScore": 10.0, "obtainAllPrivilege": true, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}}, "publishedDate": "2008-03-24T22:44Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:computer_associates:brightstor_arcserve_backup_laptops_desktops:11.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:asset_management:r11.1:c1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:asset_management:r11.1:ga:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:desktop_management_bundle:r11.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:desktop_management_bundle:r11.2:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:software_delivery:r11.1:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:software_delivery:r11.1:c1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:computer_associates:unicenter_dsm_r11_list_control_atx:11.2.3.1895:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:asset_management:r11.1:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:desktop_management_bundle:r11.1:c1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:desktop_management_bundle:r11.1:ga:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:remote_control:r11.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:desktop_management_bundle:r11.2:c1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:desktop_management_bundle:r11.1:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:asset_management:r11.2:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:remote_control:r11.2:c1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:software_delivery:r11.2:c1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:software_delivery:r11.2:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:computer_associates:desktop_management_suite:r11.1:ga:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:remote_control:r11.1:c1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:asset_management:r11.2:c1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:asset_management:r11.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:remote_control:r11.1:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:computer_associates:desktop_management_suite:r11.1:c1:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:remote_control:r11.1:ga:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:software_delivery:r11.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:software_delivery:r11.1:ga:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:unicenter:remote_control:r11.2:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:computer_associates:desktop_management_suite:r11.1:a:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:computer_associates:desktop_management_suite:r11.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-11T20:34Z"}

9.3 /10