Vulnerability CVE-2008-5415 - CERT Civis.Net

Vulnerability Name:

CVE-2008-5415 (CCN-47227)

Assigned:

2008-12-10

Published:

2008-12-10

Updated:

2021-04-07

Summary:

The LDBserver service in the server in CA ARCserve Backup 11.1 through 12.0 on Windows allows remote attackers to execute arbitrary code via a handle_t argument to an RPC endpoint in which the argument refers to an incompatible procedure.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)
7.4 High (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Denial of Service

References:

Source: CONFIRM
Type: UNKNOWN
http://community.ca.com/blogs/casecurityresponseblog/archive/2008/12/10.aspx

Source: MITRE
Type: CNA
CVE-2008-5415

Source: OSVDB
Type: UNKNOWN
50683

Source: CCN
Type: SA27299
CA ARCserve Backup RPC "handle_t" Argument Vulnerability

Source: SECUNIA
Type: Vendor Advisory
27299

Source: CCN
Type: Secunia Research 11/12/2008
CA ARCserve Backup RPC "handle_t" Argument Vulnerability

Source: MISC
Type: Vendor Advisory
http://secunia.com/secunia_research/2007-82/

Source: SREASON
Type: UNKNOWN
4708

Source: CCN
Type: OSVDB ID: 50683
CA ARCserve Backup on Windows LDBserver Service Client Data Verification Weakness

Source: BUGTRAQ
Type: UNKNOWN
20081210 CA ARCserve Backup LDBserver Vulnerability

Source: BUGTRAQ
Type: UNKNOWN
20081211 Secunia Research: CA ARCserve Backup RPC "handle_t" Argument Vulnerability

Source: BID
Type: UNKNOWN
32764

Source: CCN
Type: BID-32764
Computer Associates ARCserve Backup 'LDBServer' Remote Code Execution Vulnerability

Source: VUPEN
Type: Vendor Advisory
ADV-2008-3404

Source: XF
Type: UNKNOWN
ca-arcservebackup-handlet-code-execution(47227)

Source: CCN
Type: CA Security Advisory Vulnerability ID: 194293
Security Notice for CA ARCserve Backup LDBserver

Source: CONFIRM
Type: Patch, Vendor Advisory
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=194293

Vulnerable Configuration:

Configuration 1:

cpe:/a:broadcom:arcserve_backup:r12.0:*:*:*:*:*:*:*

OR cpe:/a:ca:arcserve_backup:r11.5:*:*:*:*:*:*:*

OR cpe:/a:ca:arcserve_backup:r11.1:*:*:*:*:*:*:*

AND

cpe:/o:microsoft:windows:*:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*

OR cpe:/a:broadcom:server_protection_suite:2:*:*:*:*:*:*:*

OR cpe:/a:broadcom:business_protection_suite:2.0:*:*:*:*:*:*:*

OR cpe:/a:broadcom:brightstor_arcserve_backup:11.5:*:*:*:*:*:*:*

Denotes that component is vulnerable