Computer Associates (CA) BrightStor and iGateway HTTP GET request buffer overflow
| brightstor-igateway-http-get-bo (22560) |  High Risk |
Description:
Computer Associates' BrightStor ARCserve, BrightStor Enterprise Backup, BrightStor Portal, BrightStor ARCserve, and iGateway are vulnerable to a buffer overflow. The iGateway component fails to properly handle specially-crafted HTTP GET requests. By sending specially-crafted HTTP GET requests to port 5250 when the debug mode is enabled (which is not the system default), a remote or local attacker could overflow a buffer and execute arbitrary code on the system.
Platforms Affected:
- CA, iGateway 3.0
- CA, iGateway 4.0
Remedy:
For iGateway 3.0 and 4.0:
Upgrade to the latest version of iGateway (4.0.050623 or later), as listed in Computer Associates Vulnerability ID: 33485. See References.
Work-around solution:: Keep the default iGateway settings. Do not run iGateway in debug mode.
Consequences:
Gain Access
References:
- BrightStor ARCserve 2000 Web page, BrightStor ARCserve 2000 at http://www3.ca.com/Solutions/Product.asp?ID=3372.
- BrightStor ARCserve Backup Web page, BrightStor ARCserve Backup at http://www3.ca.com/Solutions/ProductFamily.asp?ID=115.
- BrightStor Portal Web site, BrightStor Portal at http://supportconnectw.ca.com/public/brightstor-portal/brightstor-portal_supp.asp.
- Computer Associates Vulnerability Information Center, Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability at http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33485.
- BID-15025: Computer Associates Multiple Product HTTP Request Remote Buffer Overflow Vulnerability
- CVE-2005-3190: Buffer overflow in Computer Associates (CA) iGateway 3.0 and 4.0 before 4.0.050623, when running in debug mode, allows remote attackers to execute arbitrary code via HTTP GET requests.
- OSVDB ID: 19920: CA iGateway Debug Mode HTTP GET Request Overflow
- SA17085: CA iGateway Debug Mode HTTP GET Request Buffer Overflow
- SECTRACK ID: 1015045: Computer Associates Buffer Overflow in iGateway Lets Remote Users Execute Arbitrary Code
Reported:
Oct 10, 2005
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
Copyright (c) 1994-2008 Internet Security Systems, Inc. All rights reserved worldwide.
For corrections or additions please email xforce@iss.net