CA Security Response Blog

CA ARCserve Backup Discovery Service Denial of Service Vulnerability

Ken Williams — Wed, 18 Jun 2008 14:16:00 GMT

On June 17th, 2008, CA published a security notice to address a vulnerability in CA ARCserve Backup. Title: CA ARCserve Backup Discovery Service Denial of Service Vulnerability CA Advisory Date: 2008-06-17 Reported By: Luigi Auriemma Impact: A remote attacker can cause a denial of service. Summary: CA ARCserve Backup contains a vulnerability in the Discovery service (casdscsvc) that...

CA Secure Content Manager HTTP Gateway Service FTP Request Vulnerabilities

Ken Williams — Wed, 04 Jun 2008 20:28:00 GMT

On June 3rd, 2008, CA published a security notice to address multiple vulnerabilities in CA Secure Content Manager. Title: CA Secure Content Manager HTTP Gateway Service FTP Request Vulnerabilities CA Advisory Date: 2008-06-03 Reported By: Sebastian Apelt working with ZDI/TippingPoint; Cody Pierce, TippingPoint DVLabs Impact: A remote attacker can cause a denial of service or execute arbitrary...

CA ARCserve Backup caloggerd and xdr Functions Vulnerabilities

Ken Williams — Mon, 19 May 2008 21:06:00 GMT

On May 19th, 2008 CA published a security notice to address multiple vulnerabilities in CA ARCserve Backup. Title: CA ARCserve Backup caloggerd and xdr Functions Vulnerabilities CA Advisory Date: 2008-05-19 Reported By: An anonymous researcher working with the iDefense VCP Damian Put working with ZDI/TippingPoint Impact: A remote attacker can cause a denial of service or execute...

Automatic Patch-Based Exploit Generation

Ken Williams — Thu, 24 Apr 2008 20:27:00 GMT

The Full-Disclosure mailing list is good for interesting, and often humorous, content on a daily basis. The highlight of the week last week was a link to a paper entitled "Automatic Patch-Based Exploit Generation", by David Brumley, Pongsin Poosankam, Dawn Song, and Jiang Zheng. From the abstract ... "In this paper, we propose techniques for automatic patch-based...

CA ARCserve Backup r12 and CA Secure Content Manager r8 vulnerabilities

Ken Williams — Mon, 21 Apr 2008 23:10:00 GMT

CA is currently investigating vulnerability reports concerning CA ARCserve Backup r12 and CA Secure Content Manager r8 that were published publicly on 4/17/08 and 4/18/08 respectively. CA will issue an advisory if and when the reports have been verified. Share this post: Email it! | bookmark it! | digg it! | reddit!

CA DSM gui_cm_ctrls ActiveX Control Vulnerability

Ken Williams — Wed, 16 Apr 2008 15:34:00 GMT

On April 15th, 2008 CA published a security notice to address a vulnerability in CA products that implement the DSM gui_cm_ctrls ActiveX control. Title: CA DSM gui_cm_ctrls ActiveX Control Vulnerability CA Advisory Date: 2008-04-15 Reported By: Greg Linares of eEye Digital Security Impact: A remote attacker can execute arbitrary code or cause a denial of service...

CA ARCserve Backup for Laptops and Desktops Server and CA Desktop Management Suite Multiple Vulnerabilities

Ken Williams — Fri, 04 Apr 2008 12:47:00 GMT

On April 3rd, 2008, CA published a security notice to address multiple vulnerabilities in CA ARCserve Backup for Laptops and Desktops Server and CA Desktop Management Suite. Title: CA ARCserve Backup for Laptops and Desktops Server and CA Desktop Management Suite Multiple Vulnerabilities CA Advisory Date: 2008-04-03 Reported By: Dyon Balding of Secunia Research Impact: A remote attacker...

CA Alert Notification Server Multiple Vulnerabilities

Ken Williams — Fri, 04 Apr 2008 11:55:00 GMT

On April 3rd, 2008 CA published a security notice to address a vulnerability in CA Alert Notification Server. Title: CA Alert Notification Server Multiple Vulnerabilities CA Advisory Date: 2008-04-03 Reported By: An anonymous researcher working with the iDefense VCP Impact: A remote authenticated attacker can execute arbitrary code or cause a denial of service condition. Summary: CA...

CA Multiple Products DSM ListCtrl ActiveX Control Buffer Overflow Vulnerability

Ken Williams — Fri, 28 Mar 2008 12:39:00 GMT

On March 28th, 2008 CA published a security notice to address a vulnerability in CA products that implement the DSM ListCtrl ActiveX control. Title: CA Multiple Products DSM ListCtrl ActiveX Control Buffer Overflow Vulnerability CVE: CVE-2008-1472 CA Advisory Date: 2008-03-28 Reported By: Exploit code posted at milw0rm.com Impact: A remote attacker can cause a denial of service or...

Note about recently publicized CA BrightStor ActiveX exploit code

Ken Williams — Thu, 20 Mar 2008 14:12:00 GMT

CA is reviewing exploit code that was posted on 2008-03-16 to the Milw0rm exploit archive web site. This exploit code is potentially associated with vulnerabilities that may exist in CA BrightStor ARCserve Backup for Laptops and Desktops and/or related products. CA will issue an advisory after we have completed our initial investigation. Share this post: Email it! | bookmark it! |...

Russian Business Network (RBN) - an example of modern cybercrime

Ken Williams — Mon, 03 Mar 2008 14:43:00 GMT

When warning customers, friends, and family about the dangers cybercrime, they usually accuse me of exaggerating the severity of internet related criminal activity. They think I'm sensationalizing an "epidemic" that, in reality, isn't very organized or pervasive. The truth though is that cybercrime is very mature, very businesslike, and more of a threat than ever...

CA Products That Embed Ingres Authentication Vulnerability

Ken Williams — Wed, 19 Dec 2007 18:25:00 GMT

On 2007-12-19, we released patches to address a vulnerability in CA products that embed Ingres 2.5 or 2.6 on Windows platforms. Title: [CAID 35970]: CA Products That Embed Ingres Authentication Vulnerability CA Vuln ID (CAID): 35970 CA Advisory Date: 2007-12-19 Reported By: Ingres Corporation Impact: Attacker can gain elevated privileges. Summary: A potential vulnerability exists in the...

New patches available to address CA BrightStor ARCserve Backup multiple vulnerabilities

Ken Williams — Wed, 05 Dec 2007 14:40:00 GMT

On 2007-10-10, we released BrightStor ARCserve Backup patches to address multiple vulnerabilities. We subsequently determined that some of the vulnerability issues were not completely remediated. So, we have now released new patches that completely resolve all of the vulnerability issues. Updated security notice below. Title: [CAID 35724, 35725, 35726]: CA BrightStor...

Welcome to the CA Security Response blog

Ken Williams — Fri, 16 Nov 2007 04:33:00 GMT

Welcome to the CA Security Response blog. We plan to use this blog to post information about CA product vulnerabilities, and to discuss a variety of other security topics that we find to be relevant and interesting. Share this post: Email it! | bookmark it! | digg it! | reddit!