Computer Associates License Service invalid command buffer overflow

Added: 12/24/2008
CVE: CVE-2005-0581
BID: 12705
OSVDB: 14389

Background

The License service comes with most Computer Associatesproducts and exchanges license information over ports 10202/tcp and 10203/tcp.

Problem

A buffer overflow vulnerability allows a remote attacker to execute arbitrary commands by sending a long, specially crafted string instead of a valid command to the license service.

Resolution

Apply the appropriate patch.

References

http://supportconnectw.ca.com/public/ca_common_docs/security_notice.asp
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=210

Limitations

Exploit works on CA ARCserve Backup 11.1.

Platforms

Windows 2000
Windows Server 2003

Back to exploit index