Info

Disclosure

Mar 02, 2005

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Mar 02, 2005

Description

Muliple remote overflows exist in CA License Manager. The LIC98RMT.EXE component fails to validate the parameters passed to several commands resulting in buffer overflows. With a specially crafted request, an attacker can cause arbitrary code execution resulting in a loss of integrity.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Solution: Upgrade
Exploit: Exploit Public, Exploit Commercial
Disclosure: OSVDB Verified, Vendor Verified

Solution

Upgrade to version 1.61.9 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Computer Associates International, Inc.	License Package	1.61.8
		1.53

References

Security Tracker: 1013354
Bugtraq ID: 12705
Metasploit ID: 14389
Secunia Advisory ID: 14438
ISS X-Force ID: 19562
CVE ID: 2005-0581 (see also: NVD) 2005-0582 (see also: NVD)
Milw0rm: 859
Exploit Database: 859
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-03/0057.html
Generic Exploit URL: http://immunitysec.com
http://www.saintcorporation.com/cgi-bin/exploit_info/ca_license_gcr
http://www.saintcorporation.com/cgi-bin/exploit_info/ca_license_getconfig
http://www.saintcorporation.com/cgi-bin/exploit_info/ca_license_invalid_command
http://www.saintcorporation.com/cgi-bin/exploit_info/ca_license_putolf
Other Advisory URL: http://research.eeye.com/html/advisories/published/AD20050302.html
http://www.eeye.com/html/research/advisories/AD20050302.html [ Link is 404 ]
http://www.idefense.com/application/poi/display?id=210&type=vulnerabilities
http://www.idefense.com/application/poi/display?id=211&type=vulnerabilities
http://www.idefense.com/application/poi/display?id=213&type=vulnerabilities&flashstatus=true
Vendor Specific Advisory URL: http://supportconnectw.ca.com/public/ca_common_docs/security_notice.asp
Vendor URL: http://www.ca.com/
CIAC Advisory: p-150

Credit

Barnaby Jack - infoeEye.com - eEye Digital Security
Greg MacManus - iDEFENSE Labs

Direct URL: http://osvdb.org/14389

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Computer Associates International, Inc.

License Package

References

Credit