CVE-2008-3175

Description

Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted message that triggers a buffer overflow.

Related CPE's

acaprotection_suites3.0*******

acabrightstor_arcserve_backup11.1*sp2*****

acaarcserve_backup_for_laptops_and_desktops11.5*******

acaarcserve_backup_for_laptops_and_desktops11.0*******

acaarcserve_backup_for_laptops_and_desktops11.1*sp2*****

acaprotection_suites3.1*******

acabrightstor_arcserve_backup11.0*******

acaarcserve_backup_for_laptops_and_desktops11.1*******

acabrightstor_arcserve_backup11.1*sp1*****

acaprotection_suites2*******

References

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181721

PatchVendor Advisory

30472

Patch

1020590

20080731 Assurent VR - CA ARCserve Backup for Laptops and Desktops LGServer Handshake Buffer Overflow

31319

Vendor Advisory

ADV-2008-2286

Vendor Advisory

ca-abld-rxrpc-bo(44137)

20080801 CA ARCserve Backup for Laptops and Desktops Server LGServer Service Vulnerability

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:L/Au:N/C:C/I:C/A:C

AccessVector

NETWORK

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

COMPLETE

IntegrityImpact

COMPLETE

AvailabilityImpact

COMPLETE

BaseScore

10

Created by Yello
About Severity.io