Vulnerability Description
Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted message that triggers a buffer overflow.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Brightstor Arcserve Backup | 11.1 |
| Broadcom | Desktop Management Suite | 11.1 |
| Ca | Arcserve Backup For Laptops And Desktops | 11.0 |
| Ca | Brightstor Arcserve Backup | 11.0 |
| Ca | Protection Suites | 2 |
Related Weaknesses (CWE)
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2008-July/063594.html
- http://secunia.com/advisories/31319Vendor Advisory
- http://www.securityfocus.com/archive/1/495020/100/0/threaded
- http://www.securityfocus.com/bid/30472Patch
- http://www.securitytracker.com/id?1020590
- http://www.vupen.com/english/advisories/2008/2286Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44137
- https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=181721PatchVendor Advisory
- http://lists.grok.org.uk/pipermail/full-disclosure/2008-July/063594.html
- http://secunia.com/advisories/31319Vendor Advisory
- http://www.securityfocus.com/archive/1/495020/100/0/threaded
- http://www.securityfocus.com/bid/30472Patch
- http://www.securitytracker.com/id?1020590
- http://www.vupen.com/english/advisories/2008/2286Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44137
FAQ
What is CVE-2008-3175?
CVE-2008-3175 is a vulnerability with a CVSS score of 10.0 (HIGH). Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denia...
How severe is CVE-2008-3175?
CVE-2008-3175 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-3175?
Check the references section above for vendor advisories and patch information. Affected products include: Broadcom Brightstor Arcserve Backup, Broadcom Desktop Management Suite, Ca Arcserve Backup For Laptops And Desktops, Ca Brightstor Arcserve Backup, Ca Protection Suites.