Signature Detail

APP: Computer Associates log_security Overflow

This signature detects attempts to exploit a known vulnerability against the Computer Associates Log Security service. A successful attack can lead to arbitrary remote code execution. An exploit is currently available.

Extended Description

Computer Associates Message Queuing (CAM) is prone to a buffer-overflow vulnerability because the application fails to perform proper bounds checking on user-supplied data. A successful attack can cause the process's execution stack to overflow and may ultimately allow arbitrary code to run in the context of the affected application. This may allow an attacker to escalate their privileges to SYSTEM level.

Affected Products

• Computer Associates Advantage Data Transport 3.0.0
• Computer Associates AdviseIT 2.4.0
• Computer Associates BrightStor Portal 11.1.0
• Computer Associates BrightStor SAN Manager 1.1.0
• Computer Associates BrightStor SAN Manager 1.1.0 SP1
• Computer Associates BrightStor SAN Manager 1.1.0 SP2
• Computer Associates BrightStor SAN Manager 11.1.0
• Computer Associates CAM 1.05
• Computer Associates CAM 1.07
• Computer Associates CAM 1.11
• Computer Associates CleverPath Aion 10.0.0
• Computer Associates CleverPath ECM 3.5.0
• Computer Associates CleverPath OLAP 5.1.0
• Computer Associates CleverPath Predictive Analysis Server 2.0.0
• Computer Associates CleverPath Predictive Analysis Server 3.0.0
• Computer Associates eTrust Admin 2.1.0
• Computer Associates eTrust Admin 2.4.0
• Computer Associates eTrust Admin 2.7.0
• Computer Associates eTrust Admin 2.9.0
• Computer Associates eTrust Admin 8.0.0
• Computer Associates eTrust Admin 8.1.0
• Computer Associates Unicenter Application Performance Monitor 3.0.0
• Computer Associates Unicenter Application Performance Monitor 3.5.0
• Computer Associates Unicenter Asset Management 3.1.0
• Computer Associates Unicenter Asset Management 3.2.0
• Computer Associates Unicenter Asset Management 3.2.0 SP1
• Computer Associates Unicenter Asset Management 3.2.0 SP2
• Computer Associates Unicenter Asset Management 4.0.0
• Computer Associates Unicenter Asset Management 4.0.0 SP1
• Computer Associates Unicenter Data Transport Option 2.0.0
• Computer Associates Unicenter Enterprise Job Manager 1.0.0 SP1
• Computer Associates Unicenter Enterprise Job Manager 1.0.0 SP2
• Computer Associates Unicenter Jasmine 3.0.0
• Computer Associates Unicenter Management for Lotus Notes/Domino 4.0.0
• Computer Associates Unicenter Management for Microsoft Exchange 4.0.0
• Computer Associates Unicenter Management for Microsoft Exchange 4.1.0
• Computer Associates Unicenter Management for Web Servers 5.0.0
• Computer Associates Unicenter Management for Web Servers 5.0.1
• Computer Associates Unicenter Management for WebSphere MQ 3.5.0
• Computer Associates Unicenter Management Portal 2.0.0
• Computer Associates Unicenter Management Portal 3.1.0
• Computer Associates Unicenter Network and Systems Management 3.0.0
• Computer Associates Unicenter Network and Systems Management 3.1.0
• Computer Associates Unicenter NSM Wireless Network Management Option 3.0.0
• Computer Associates Unicenter Performance Management for OpenVMS 2.4.0 SP3
• Computer Associates Unicenter Remote Control 6.0.0
• Computer Associates Unicenter Remote Control 6.0.0 SP1
• Computer Associates Unicenter Service Level Management 3.0.0
• Computer Associates Unicenter Service Level Management 3.0.1
• Computer Associates Unicenter Service Level Management 3.0.2
• Computer Associates Unicenter Service Level Management 3.5.0
• Computer Associates Unicenter Software Delivery 3.0.0
• Computer Associates Unicenter Software Delivery 3.1.0
• Computer Associates Unicenter Software Delivery 3.1.0 SP1
• Computer Associates Unicenter Software Delivery 3.1.0 SP2
• Computer Associates Unicenter Software Delivery 4.0.0
• Computer Associates Unicenter Software Delivery 4.0.0 SP1
• Computer Associates Unicenter TNG 2.1.0
• Computer Associates Unicenter TNG 2.2.0
• Computer Associates Unicenter TNG 2.4.0
• Computer Associates Unicenter TNG 2.4.2
• Computer Associates Unicenter TNG JPN 2.2.0

References

• BugTraq: 14622
• CVE: CVE-2005-2668
• URL: http://www.kb.cert.org/vuls/id/619988
• URL: http://supportconnectw.ca.com/public/ca_common_docs/camsecurity_notice.asp