Signature Detail

APP: CA Products Message Queuing Server Buffer Overflow

This signature detects attempts to exploit a known buffer overflow vulnerability in the way CA Message Queuing Server handles incoming packets. It is due to lack of boundary protection while processing packets. A remote unauthenticated attacker can exploit this to cause a denial-of-service condition or inject and execute arbitrary code on the system within the security context of the affected service, normally System. Also, in a successful code injection attack, the behavior of the target is entirely dependent on the intended function of the injected code and would execute within the security context of the affected service. In an unsuccessful code injection attack, the affected server terminates.

Extended Description

Multiple Computer Associates products are prone to a remote stack-based buffer-overflow vulnerability. This issue affects the Message Queuing (CAM/CAFT) component. The application fails to properly bounds-check user-supplied data before copying it to an insufficiently sized buffer. A successful exploit will allow an attacker to execute arbitrary code with SYSTEM-level privileges. This issue affects all versions of the CA Message Queuing software prior to v1.11 Build 54_4 on Windows and NetWare.

Affected Products

• Computer Associates Advantage Data Transport 3.0.0
• Computer Associates BrightStor Portal 11.1.0
• Computer Associates BrightStor SAN Manager 11.1.0
• Computer Associates BrightStor SAN Manager 11.5.0
• Computer Associates CleverPath Aion 10.0.0
• Computer Associates CleverPath ECM 3.5.0
• Computer Associates CleverPath OLAP 5.1.0
• Computer Associates CleverPath Predictive Analysis Server 2.0.0
• Computer Associates CleverPath Predictive Analysis Server 3.0.0
• Computer Associates eTrust Admin 2.01
• Computer Associates eTrust Admin 2.04
• Computer Associates eTrust Admin 2.07
• Computer Associates eTrust Admin 2.09
• Computer Associates eTrust Admin 8.0.0
• Computer Associates eTrust Admin 8.1.0
• Computer Associates Unicenter Application Performance Monitor 3.0.0
• Computer Associates Unicenter Application Performance Monitor 3.5.0
• Computer Associates Unicenter Asset Management 3.1.0
• Computer Associates Unicenter Asset Management 3.2.0
• Computer Associates Unicenter Asset Management 3.2.0 SP1
• Computer Associates Unicenter Asset Management 3.2.0 SP2
• Computer Associates Unicenter Asset Management 4.0.0
• Computer Associates Unicenter Asset Management 4.0.0 SP1
• Computer Associates Unicenter Data Transport Option 2.0.0
• Computer Associates Unicenter Enterprise Job Manager 1.0.0 SP1
• Computer Associates Unicenter Enterprise Job Manager 1.0.0 SP2
• Computer Associates Unicenter Jasmine 3.0.0
• Computer Associates Unicenter Management for Lotus Notes/Domino 4.0.0
• Computer Associates Unicenter Management for Microsoft Exchange 4.0.0
• Computer Associates Unicenter Management for Microsoft Exchange 4.1.0
• Computer Associates Unicenter Management for Web Servers 5.0.0
• Computer Associates Unicenter Management for Web Servers 5.0.1
• Computer Associates Unicenter Management for WebSphere MQ 3.5.0
• Computer Associates Unicenter Network and Systems Management 3.0
• Computer Associates Unicenter Network and Systems Management 3.1
• Computer Associates Unicenter NSM Wireless Network Management Option 3.0.0
• Computer Associates Unicenter Remote Control 6.0.0
• Computer Associates Unicenter Remote Control 6.0.0 SP1
• Computer Associates Unicenter Service Level Management 3.0.0
• Computer Associates Unicenter Service Level Management 3.0.1
• Computer Associates Unicenter Service Level Management 3.0.2
• Computer Associates Unicenter Service Level Management 3.5.0
• Computer Associates Unicenter Software Delivery 3.0.0
• Computer Associates Unicenter Software Delivery 3.1.0
• Computer Associates Unicenter Software Delivery 3.1.0 SP1
• Computer Associates Unicenter Software Delivery 3.1.0 SP2
• Computer Associates Unicenter Software Delivery 4.0.0
• Computer Associates Unicenter Software Delivery 4.0.0 SP1
• Computer Associates Unicenter TNG 2.1.0
• Computer Associates Unicenter TNG 2.2.0
• Computer Associates Unicenter TNG 2.4.0
• Computer Associates Unicenter TNG 2.4.2
• Computer Associates Unicenter TNG JPN 2.2.0

References

• BugTraq: 25051
• CVE: CVE-2007-0060