Buffer overflow in mng_core_com.dll in CA XOsoft Replication r12.0 SP1 and r12.5 SP2 rollup, CA XOsoft High Availability r12.0 SP1 and r12.5 SP2 rollup, CA XOsoft Content Distribution r12.0 SP1 and r12.5 SP2 rollup, and CA ARCserve Replication and High Availability (RHA) r15.0 SP1 allows remote attackers to execute arbitrary code via a crafted create_session_bab operation in a SOAP request to xosoapapi.asmx.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 01:20
Type | Values Removed | Values Added |
---|---|---|
References | () http://secunia.com/advisories/42561 - Vendor Advisory | |
References | () http://www.securityfocus.com/archive/1/515115/100/0/threaded - | |
References | () http://www.securityfocus.com/bid/45317 - | |
References | () http://www.securitytracker.com/id?1024852 - | |
References | () http://www.zerodayinitiative.com/advisories/ZDI-10-263/ - | |
References | () https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7bFEB41CE8-5023-46DF-B257-5299F492BF23%7d - Vendor Advisory |
Information
Published : 2011-01-07 23:00
Updated : 2024-11-21 01:20
NVD link : CVE-2010-3984
Mitre link : CVE-2010-3984
CVE.ORG link : CVE-2010-3984
JSON object : View
Products Affected
ca
- xosoft_high_availability
- arcserve_replication_and_high_availability
- xosoft_replication
- xosoft_content_distribution
CWE
CWE-119
Improper Restriction of Operations within the Bounds of a Memory Buffer