CVE-2007-0060: Buffer Overflow
First published: Thu Jul 26 2007(Updated: )
Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11 Build 54_4 on Windows and NetWare, as used in CA Advantage Data Transport, eTrust Admin, certain BrightStor products, certain CleverPath products, and certain Unicenter products, allows remote attackers to execute arbitrary code via a crafted message to TCP port 3104.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Ca Unicenter Management | =4.1 | |
| Ca Unicenter Asset Management | =4.0-sp1 | |
| Ca Etrust Admin | =2.1 | |
| Ca Unicenter Software Delivery | =4.0-sp1 | |
| Ca Unicenter Management | =5.0.1 | |
| Ca Unicenter Enterprise Job Manager | =1.0-sp1 | |
| Ca Etrust Admin | =2.9 | |
| Ca Etrust Admin | =2.4 | |
| Ca Unicenter Management | =4.0 | |
| Ca Etrust Admin | =2.7 | |
| Ca Unicenter Enterprise Job Manager | =1.0-sp2 | |
| Ca Unicenter Management | =4.0 | |
| Ca Unicenter Management | =5.0 | |
| Ca Unicenter Tng | =2.2 | |
| Broadcom Advantage Data Transport | =3.0 | |
| Broadcom Brightstor Portal | =11.1 | |
| Broadcom Brightstor San Manager | =11.1 | |
| Broadcom Brightstor San Manager | =11.5 | |
| Broadcom Cleverpath Aion | =10.0 | |
| Broadcom Cleverpath Ecm | =3.5 | |
| Broadcom Cleverpath Olap | =5.1 | |
| Broadcom Cleverpath Predictive Analysis Server | =2.0 | |
| Broadcom Cleverpath Predictive Analysis Server | =3.0 | |
| Broadcom Etrust Admin | =8.0 | |
| Broadcom Etrust Admin | =8.1 | |
| Broadcom Unicenter Application Performance Monitor | =3.0 | |
| Broadcom Unicenter Application Performance Monitor | =3.5 | |
| Broadcom Unicenter Asset Management | =3.1 | |
| Broadcom Unicenter Asset Management | =3.2 | |
| Broadcom Unicenter Asset Management | =3.2-sp1 | |
| Broadcom Unicenter Asset Management | =3.2-sp2 | |
| Broadcom Unicenter Asset Management | =4.0 | |
| Broadcom Unicenter Data Transport Option | =2.0 | |
| Broadcom Unicenter Remote Control | =6.0 | |
| Broadcom Unicenter Remote Control | =6.0-sp1 | |
| Broadcom Unicenter Service Level Management | =3.0 | |
| Broadcom Unicenter Service Level Management | =3.0.1 | |
| Broadcom Unicenter Service Level Management | =3.0.2 | |
| Broadcom Unicenter Service Level Management | =3.5 | |
| Broadcom Unicenter Jasmine | =3.0 | |
| Broadcom Unicenter Network And Systems Management | =3.0 | |
| Broadcom Unicenter Network And Systems Management | =3.1 | |
| Broadcom Unicenter Nsm Wireless Network Management Option | =3.0 | |
| Broadcom Unicenter Software Delivery | =3.0 | |
| Broadcom Unicenter Software Delivery | =3.1-sp1 | |
| Broadcom Unicenter Software Delivery | =3.1-sp2 | |
| Broadcom Unicenter Software Delivery | =3.1 | |
| Broadcom Unicenter Software Delivery | =4.0 | |
| Broadcom Unicenter Tng | =2.1 | |
| Broadcom Unicenter Tng | =2.2 | |
| Broadcom Unicenter Tng | =2.4 | |
| Broadcom Unicenter Tng | =2.4.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.iss.net/threats/272.html
- http://supportconnectw.ca.com/public/dto_transportit/infodocs/camsgquevul-secnot.asp
- http://www.securityfocus.com/bid/25051
- http://secunia.com/advisories/26190
- http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149809
- http://www.securitytracker.com/id?1018449
- http://www.vupen.com/english/advisories/2007/2638
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32234
- http://www.securityfocus.com/archive/1/474602/100/0/threaded
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/ca
- canonical/ca unicenter management
- version/ca unicenter management/4.1
- canonical/ca unicenter asset management
- version/ca unicenter asset management/4.0-sp1
- canonical/ca etrust admin
- version/ca etrust admin/2.1
- canonical/ca unicenter software delivery
- version/ca unicenter software delivery/4.0-sp1
- version/ca unicenter management/5.0.1
- canonical/ca unicenter enterprise job manager
- version/ca unicenter enterprise job manager/1.0-sp1
- version/ca etrust admin/2.9
- version/ca etrust admin/2.4
- version/ca unicenter management/4.0
- version/ca etrust admin/2.7
- version/ca unicenter enterprise job manager/1.0-sp2
- version/ca unicenter management/5.0
- canonical/ca unicenter tng
- version/ca unicenter tng/2.2
- vendor/broadcom
- canonical/broadcom advantage data transport
- version/broadcom advantage data transport/3.0
- canonical/broadcom brightstor portal
- version/broadcom brightstor portal/11.1
- canonical/broadcom brightstor san manager
- version/broadcom brightstor san manager/11.1
- version/broadcom brightstor san manager/11.5
- canonical/broadcom cleverpath aion
- version/broadcom cleverpath aion/10.0
- canonical/broadcom cleverpath ecm
- version/broadcom cleverpath ecm/3.5
- canonical/broadcom cleverpath olap
- version/broadcom cleverpath olap/5.1
- canonical/broadcom cleverpath predictive analysis server
- version/broadcom cleverpath predictive analysis server/2.0
- version/broadcom cleverpath predictive analysis server/3.0
- canonical/broadcom etrust admin
- version/broadcom etrust admin/8.0
- version/broadcom etrust admin/8.1
- canonical/broadcom unicenter application performance monitor
- version/broadcom unicenter application performance monitor/3.0
- version/broadcom unicenter application performance monitor/3.5
- canonical/broadcom unicenter asset management
- version/broadcom unicenter asset management/3.1
- version/broadcom unicenter asset management/3.2
- version/broadcom unicenter asset management/3.2-sp1
- version/broadcom unicenter asset management/3.2-sp2
- version/broadcom unicenter asset management/4.0
- canonical/broadcom unicenter data transport option
- version/broadcom unicenter data transport option/2.0
- canonical/broadcom unicenter remote control
- version/broadcom unicenter remote control/6.0
- version/broadcom unicenter remote control/6.0-sp1
- canonical/broadcom unicenter service level management
- version/broadcom unicenter service level management/3.0
- version/broadcom unicenter service level management/3.0.1
- version/broadcom unicenter service level management/3.0.2
- version/broadcom unicenter service level management/3.5
- canonical/broadcom unicenter jasmine
- version/broadcom unicenter jasmine/3.0
- canonical/broadcom unicenter network and systems management
- version/broadcom unicenter network and systems management/3.0
- version/broadcom unicenter network and systems management/3.1
- canonical/broadcom unicenter nsm wireless network management option
- version/broadcom unicenter nsm wireless network management option/3.0
- canonical/broadcom unicenter software delivery
- version/broadcom unicenter software delivery/3.0
- version/broadcom unicenter software delivery/3.1-sp1
- version/broadcom unicenter software delivery/3.1-sp2
- version/broadcom unicenter software delivery/3.1
- version/broadcom unicenter software delivery/4.0
- canonical/broadcom unicenter tng
- version/broadcom unicenter tng/2.1
- version/broadcom unicenter tng/2.2
- version/broadcom unicenter tng/2.4
- version/broadcom unicenter tng/2.4.2