21146 : CA Message Queuing (CAM / CAFT) Port 4105 Crafted Message DoS
Printer | http://osvdb.org/21146 | Email This | Edit Vulnerability

Views This Week

Views All Time

641

Info

Last Modified

about 1 year ago

Percent Complete

90%

Disclosure

Feb 02, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Keywords

CAID 33581

Description

CA Message Queueing contains a flaw that may allow a remote denial of service. The issue is triggered when crafted messages are received on TCP port 4105, and will result in loss of availability for the service.

Classification

Location: Remote/Network Access Required
Attack Type: Denial of Service
Impact: Loss of Availability
Exploit: Exploit Unknown
Disclosure: OSVDB Verified

Solution

Upgrade to the latest CAM version, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Computer Associates International, Inc.	Unicenter Remote Control	6.0
	Unicenter Remote Control	6.0 SP1
	Unicenter NSM	3.1
	Unicenter NSM	3.0
	Unicenter TNG	2.2
		2.1
		2.4
		2.4.2
	BrightStor SAN Manager	1.1
		1.1 SP1
		1.1 SP2
		11.1
	BrightStor Portal	11.1
	eTrust Admin	8.1
		2.01
		2.04
		2.07
		2.09
		8.0
	Unicenter Application Performance Monitor	3.0
	Unicenter Application Performance Monitor	3.5
	Advantage Data Transport	3.0
	CleverPath OLAP	5.1
	CleverPath ECM	3.5
	CleverPath Predictive Analysis Server	2.0
	CleverPath Predictive Analysis Server	3.0
	CleverPath Aion	10.0
	Unicenter Asset Management	3.1
		3.2
		3.2 SP1
		3.2 SP2
		4.0
		4.0 SP1
	Unicenter Data Transport Option	2.0
	Unicenter Enterprise Job Manager	1.0 SP1
	Unicenter Enterprise Job Manager	1.0 SP2
	Unicenter Jasmine	3.0
	Unicenter Management for WebSphere MQ	3.5
	Unicenter Management for Microsoft Exchange	4.0
	Unicenter Management for Microsoft Exchange	4.1
	Unicenter Management for Lotus Notes/Domino	4.0
	Unicenter Management for Web Servers	5
	Unicenter Management for Web Servers	5.0.1
	Unicenter NSM Wireless Network Management Option	3.0
	Unicenter Service Level Management	3.0
		3.0.1
		3.0.2
		3.5
	Unicenter Software Delivery	3.0
		3.1
		3.1 SP1
		3.1 SP2
		4.0
		4.0 SP1
	Unicenter TNG JPN	2.2

References

Security Tracker: 1015571
Secunia Advisory ID: 18681
CVE ID: 2006-0529 (see also: NVD)
ISS X-Force ID: 24448
FrSIRT Advisory: ADV-2006-0414
Keyword: CAID 33581
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-02/0020.html
Vendor Specific Advisory URL: http://supportconnectw.ca.com/public/ca_common_docs/camessagsecurity_notice.asp

Tools & Filters

Nessus	20840

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches

Views This Week

Views All Time

Info

Last Modified

Percent Complete

Disclosure

Discovery

Dates

Exploit

Solution

Keywords

Description

Classification

Solution

Products

Computer Associates International, Inc.

Unicenter Remote Control

Unicenter NSM

Unicenter TNG

BrightStor SAN Manager

BrightStor Portal

eTrust Admin

Unicenter Application Performance Monitor

Advantage Data Transport

CleverPath OLAP

CleverPath ECM

CleverPath Predictive Analysis Server

CleverPath Aion

Unicenter Asset Management

Unicenter Data Transport Option

Unicenter Enterprise Job Manager

Unicenter Jasmine

Unicenter Management for WebSphere MQ

Unicenter Management for Microsoft Exchange

Unicenter Management for Lotus Notes/Domino

Unicenter Management for Web Servers

Unicenter NSM Wireless Network Management Option

Unicenter Service Level Management

Unicenter Software Delivery

Unicenter TNG JPN

References

Tools & Filters

Credit

Blogs

Comments