[CLOSE] OSVDB ID : 41371 - Disclosed: 2007-10-10

Description:

(Description Provided by CVE) : Queue.dll for the message queuing service (LQserver.exe) in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allows remote attackers to execute arbitrary code via a malformed ONRPC protocol request for operation 0x76, which causes ARCserve Backup to dereference arbitrary pointers.

[CLOSE] OSVDB ID : 31593 - Disclosed: 2007-01-23

Description:

Multiple buffer overflows exist in ARCServe Backup. The Mobile Backup Service (LGSERVER.EXE) fails to validate all packets received on TCP port 2200 resulting in a heap overflow. With a specially crafted request, a remote attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 13706 - Disclosed: 2005-02-10

Description:

BrightStor ARCserve Backup UniversalAgent contains a flaw that may allow a malicious user to gain access to unauthorized privileges. The issue is caused by a hard-coded, undocumented administrative account for the Common Agent. This flaw may lead to a loss of integrity.

[CLOSE] OSVDB ID : 32989 - Disclosed: 2007-02-01

Description:

(Description Provided by CVE) : The RPC Server service (catirpc.exe) in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 SP2 and earlier allows remote attackers to cause a denial of service (service crash) via a crafted TADDR2UADDR that triggers a null pointer dereference in catirpc.dll, possibly related to null credentials or verifier fields.

[CLOSE] OSVDB ID : 41368 - Disclosed: 2007-10-11

Description:

(Description Provided by CVE) : Multiple buffer overflows in (1) RPC and (2) rpcx.dll in CA BrightStor ARCServe BackUp v9.01 through R11.5, and Enterprise Backup r10.5, allow remote attackers to execute arbitrary code via unspecified vectors.

[CLOSE] OSVDB ID : 31317 - Disclosed: 2006-12-08

Description:

(Description Provided by CVE) : Multiple buffer overflows in Computer Associates (CA) BrightStor ARCserve Backup R11.5 Server before SP2 allows remote attackers to execute arbitrary code in the Tape Engine (tapeeng.exe) via a crafted RPC request with (1) opnum 38, which is not properly handled in TAPEUTIL.dll 11.5.3884.0, or (2) opnum 37, which is not properly handled in TAPEENG.dll 11.5.3884.0.

[CLOSE] OSVDB ID : 30637 - Disclosed: 2006-11-21

Description:

A remote overflow exists in BrightStor ARCserve Backup Tape Engine. The BrightStor ARCserve Backup Tape Engine uses insufficient bounds checking resulting in a stack overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 68330 - Disclosed: 2010-10-04

Description:

ARCServe Backup is prone to an overflow condition. The Tape Engine fails to properly sanitize user-supplied input resulting in a buffer overflow. With a specially crafted DCERPC request for opcode 0x8A, a remote attacker can potentially cause arbitrary code execution.

[CLOSE] OSVDB ID : 31327 - Disclosed: 2007-01-11

Description:

(Description Provided by CVE) : The Tape Engine service in Computer Associates (CA) BrightStor ARCserve Backup 9.01 through 11.5, Enterprise Backup 10.5, and CA Server/Business Protection Suite r2 allows remote attackers to execute arbitrary code via certain data in opnum 0xBF in an RPC request, which is directly executed.

[CLOSE] OSVDB ID : 32990 - Disclosed: 2007-03-15

Description:

(Description Provided by CVE) : The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via certain RPC procedure arguments, which result in memory corruption, a different vulnerability than CVE-2006-6076.

[CLOSE] OSVDB ID : 32991 - Disclosed: 2007-03-15

Description:

(Description Provided by CVE) : The Tape Engine in CA (formerly Computer Associates) BrightStor ARCserve Backup 11.5 and earlier allows remote attackers to cause a denial of service (disabled interface) by calling an unspecified RPC function.

[CLOSE] OSVDB ID : 15471 - Disclosed: 2005-04-11

Description:

A remote overflow exists in ARCServe Backup. The Universal Agent fails to validate packets which are received on the TCP port, with the "option" field set to 0, 3 or 1000, and a large string preceding this "option" field in the packet, resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 32949 - Disclosed: 2007-01-30

Description:

(Description Provided by CVE) : LGSERVER.EXE in BrightStor Mobile Backup 4.0 allows remote attackers to cause a denial of service (disk consumption and daemon hang) via a value of 0xFFFFFF7F at a certain point in an authentication negotiation packet, which writes a large amount of data to a .USX file in CA_BABLDdata\Server\data\transfer\.

[CLOSE] OSVDB ID : 6766 - Disclosed: 2001-03-27

Description:

(Description Provided by CVE) : Computer Associates CCC\Harvest 5.0 for Windows NT/2000 uses weak encryption for passwords, which allows a remote attacker to gain privileges on the application.

[CLOSE] OSVDB ID : 34128 - Disclosed: 2007-04-24

Description:

(Description Provided by CVE) : SQL injection vulnerability in CA Clever Path Portal allows remote authenticated users to execute limited SQL commands and retrieve arbitrary database contents via (1) the ofinterest parameter in a light search query, (2) description parameter in the advanced search query, and possibly other vectors.

[CLOSE] OSVDB ID : 21575 - Disclosed: 2005-12-09

Description:

CleverPath Portal contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate variables upon submission to the Login Page. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 30854 - Disclosed: 2006-12-19

Description:

(Description Provided by CVE) : Unspecified vulnerability in CA CleverPath Portal before maintenance version 4.71.001_179_060830, as used in multiple products including BrightStor Portal r11.1, CleverPath Aion BPM r10 through r10.2, eTrust Security Command Center r1 and r8, and Unicenter, does not properly handle when multiple Portal servers are started at the same time and share the same data store, which might cause a Portal user to inherit the session and credentials of a user who is on another Portal server.

[CLOSE] OSVDB ID : 5876 - Disclosed: 1999-01-25

Description:

Computer Associates Control IT contains a flaw that may lead to an unauthorized password exposure. Control IT address book function allows users to save usernames and passwords with weak encryption in a file. It is possible for a local attacker to read and decrypt the file and gain access to passwords, which may lead to a loss of confidentiality and integrity.

[CLOSE] OSVDB ID : 57928 - Disclosed: 2009-02-15

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 57929 - Disclosed: 2009-02-15

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 77188 - Disclosed: 2011-11-16

Description:

(Description Provided by CVE) : Unspecified vulnerability in dxserver before 6279 in CA Directory 8.1 and CA Directory r12 before SP7 CR1 allows remote attackers to cause a denial of service (daemon crash) via a crafted SNMP packet.

[CLOSE] OSVDB ID : 62552 - Disclosed: 2010-02-23

Description:

CA eHealth Performance Manager contains a flaw that allows a remote cross site scripting (XSS) attack. This flaw exists because the application does not validate unspecified input upon submission to an unspecified script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 72312 - Disclosed: 2011-05-10

Description:

CA eHealth contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate certain unspecified input before returning it to the user. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 39596 - Disclosed: 2007-05-11

Description:

(Description Provided by CVE) : CA ERwin Data Model Validator (formerly AllFusion Data Model Validator) allows remote attackers to (1) cause a denial of service (application hang) via a malformed .EXP database file and (2) cause a denial of service (aaplication crash) via a crafted .EXP database file, which triggers a NULL dereference.

[CLOSE] OSVDB ID : 43483 - Disclosed: 2007-10-10

Description:

(Description Provided by CVE) : Unspecified vulnerability in CA ERwin Process Modeler (formerly AllFusion Process Modeler) 7.2 might allow user-assisted remote attackers to cause a denial of service via a crafted Data Standards File (Datatype Standards File).

[CLOSE] OSVDB ID : 39597 - Disclosed: 2007-05-11

Description:

(Description Provided by CVE) : Buffer overflow in LICRCMD.EXE in CA ERwin Process Modeler (formerly AllFusion Process Modeler) 7.1 allows attackers to execute arbitrary code via a long filename. NOTE: the researcher does not suggest any circumstances in which the filename would come from an untrusted source, and therefore perhaps the issue does not cross privilege boundaries and should not be included in CVE.

[CLOSE] OSVDB ID : 29011 - Disclosed: 2006-09-20

Description:

There is an API function to create your own alerts: eTSAPISend.exe. The service does not use any authentication, so the attacker may script the binary to send thousands of false-positive alerts to the Security Command Center, diverting attention and resources from real threats.

[CLOSE] OSVDB ID : 29010 - Disclosed: 2006-09-20

Description:

eTrust Security Command Center contains a flaw that allows a remote attacker to read and delete files outside of the web path. The issue is due to eSMPAuditServlet not properly sanitizing user input, specifically directory traversal style attacks (../../) supplied via the eSCCAdHocHtmlFile parameter.

[CLOSE] OSVDB ID : 29009 - Disclosed: 2006-09-20

Description:

CA eTrust Security Command Center contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker sends a single quote to the 'PIProfile' of the 'ePPIServlet' script, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

[CLOSE] OSVDB ID : 1517 - Disclosed: 2000-08-11

Description:

eTrust Access Control contains a flaw that may allow a remote attacker to alter the access control database. The issue is due to eTrust installing without strong crypto options set and using a default encryption key. If an attacker can gain access to the default key, they may be able to use it to spoof the credentials of a legitimate administrator, edit the access control database, and gain access to the remote machine.