Intrusion PreventionCA.ARCserve.Backup.Server.LGServer.Buffer.Overflow
Description
This indicates an attack attempt to exploit a buffer-overflow vulnerability in CA ARCserve Backup for Laptops and Desktops Server LGServer.
The vulnerability is caused due to insufficient validation of incoming messages. A remote unauthenticated attacker can exploit this vulnerability by sending specially crafted message to the LGServer service on port 1900/TCP.
Affected Products
CA ARCserve Backup for Laptops and Desktops r11.5
CA ARCserve Backup for Laptops and Desktops r11.1 SP2
CA ARCserve Backup for Laptops and Desktops r11.1 SP1
CA ARCserve Backup for Laptops and Desktops r11.1
CA ARCserve Backup for Laptops and Desktops r11.0
CA Desktop Management Suite 11.2
CA Desktop Management Suite 11.1
CA Protection Suites r2
CA Protection Suites 3.0
CA Protection Suites 3.1
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply patch, available from the web site:
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2019-04-08 | 14.588 | Sig Added |
| ID | 15759 |
| Created | Oct 09, 2008 |
| Updated | Apr 17, 2023 |
| Risk |
|
| CVE ID | CVE-2007-0449 CVE-2008-3175 |
| Exploit Prediction Score | 97.17% |
| Default Action | drop |
| Active | |
| Affected OS | Windows |
| Affected App | CA |