CVE-2010-3984: Buffer Overflow
First published: Fri Jan 07 2011(Updated: )
Buffer overflow in mng_core_com.dll in CA XOsoft Replication r12.0 SP1 and r12.5 SP2 rollup, CA XOsoft High Availability r12.0 SP1 and r12.5 SP2 rollup, CA XOsoft Content Distribution r12.0 SP1 and r12.5 SP2 rollup, and CA ARCserve Replication and High Availability (RHA) r15.0 SP1 allows remote attackers to execute arbitrary code via a crafted create_session_bab operation in a SOAP request to xosoapapi.asmx.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| CA XOsoft Replication | =r12.5-sp2 | |
| CA ARCserve Replication and High Availability | =r15.0-sp1 | |
| CA XOsoft Content Distribution | =r12.0-sp1 | |
| CA XOsoft Content Distribution | =r12.5-sp2 | |
| CA XOsoft High Availability | =r12.0-sp1 | |
| CA XOsoft Replication | =r12.0-sp1 | |
| CA XOsoft High Availability | =r12.5-sp2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.zerodayinitiative.com/advisories/ZDI-10-263/
- http://secunia.com/advisories/42561
- http://www.securityfocus.com/bid/45317
- https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7bFEB41CE8-5023-46DF-B257-5299F492BF23%7d
- http://www.securitytracker.com/id?1024852
- http://www.securityfocus.com/archive/1/515115/100/0/threaded
Frequently Asked Questions
What is the severity of CVE-2010-3984?
CVE-2010-3984 is classified as a medium-severity vulnerability due to the potential for remote code execution through a buffer overflow.
How do I fix CVE-2010-3984?
To mitigate CVE-2010-3984, users should apply the latest security patches or updates provided by CA Technologies for the affected software versions.
What software is affected by CVE-2010-3984?
CVE-2010-3984 affects multiple versions of CA XOsoft Replication, CA XOsoft High Availability, CA XOsoft Content Distribution, and CA ARCserve Replication and High Availability.
Is remote exploitation possible with CVE-2010-3984?
Yes, CVE-2010-3984 can be exploited remotely, allowing attackers to execute arbitrary code on affected systems.
What is the impact of exploiting CVE-2010-3984?
Exploiting CVE-2010-3984 can result in unauthorized access, control, and potentially detrimental changes to the affected systems.
- agent/references
- agent/softwarecombine
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/severity
- agent/last-modified-date
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- agent/weakness
- vendor/ca
- canonical/ca arcserve replication and high availability
- version/ca arcserve replication and high availability/r15.0-sp1
- canonical/ca xosoft content distribution
- version/ca xosoft content distribution/r12.0-sp1
- version/ca xosoft content distribution/r12.5-sp2
- canonical/ca xosoft high availability
- version/ca xosoft high availability/r12.0-sp1
- version/ca xosoft high availability/r12.5-sp2
- canonical/ca xosoft replication
- version/ca xosoft replication/r12.0-sp1
- version/ca xosoft replication/r12.5-sp2