|
|
|
|
| |
Credit:
The information has been provided by iDefense Labs Security Advisories.
The original article can be found at: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=679
|
| |
Vulnerable Systems:
* Computer Associates' Threat Manager for the Enterprise version 8.1
The Alert Service is a component of multiple Computer Associates' products. It is used to provide status updates and notifications regarding various system events. It implements an RPC interface with GUID 3d742890-397c-11cf-9bf1-00805f88cb72.
Multiple buffer overflows exist in the handlers for various opcodes. In each case, unsafe library functions are used to copy attacker supplied data into fixed size stack buffers. By making specially crafted requests, attackers are able to cause an exploitable buffer overflow.
Analysis:
Exploitation of these vulnerabilities allows an attacker to execute arbitrary code with SYSTEM privileges. In order to exploit these vulnerabilities, it is necessary for an attacker to have valid domain credentials.
Vendor response:
Computer Associates has addressed these issues by providing updates. More information is available in their advisory at the following URL: https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=173103
CVE Information:
CVE-2007-4620
Disclosure timeline:
08/24/2007 - Initial vendor notification
08/24/2007 - Initial vendor response
04/03/2008 - Coordinated public disclosure
|
|
|
|
|
