CVE-2007-5084

Related Files

TPTI-07-17.txt

Posted Oct 3, 2007

Authored by Aaron Portnoy | Site tippingpoint.com

Vulnerabilities allow a remote attacker to inject arbitrary SQL into the backend database on vulnerable installations of CA BrightStor Hierarchical Storage Manager. Authentication is not required to exploit these vulnerabilities. The specific flaws exist in the CsAgent service that listens by default on TCP port 2000. An opcode parsing switch statement multiplexes data funneling across various vulnerable routines. At least 7 out of the available 68 opcodes are vulnerable to SQL injections.

tags | advisory, remote, arbitrary, tcp, vulnerability, sql injection

advisories | CVE-2007-5084

SHA-256 | 5da82bd0446be2d5491b4f3738bc36827b04a247bd01e71d04e5eb606e4155e2

Download | Favorite | View

CAID-hsmcmv.txt

Posted Sep 27, 2007

Authored by Ken Williams | Site www3.ca.com

Multiple vulnerabilities exist in the CsAgent service that can allow a remote attacker to execute arbitrary code or cause a denial of service condition. The first set of vulnerabilities, CVE-2007-5082, occur due to insufficient bounds checking in multiple CsAgent service commands. The second set of vulnerabilities, CVE-2007-5083, occur due to insufficient validation of integer values in multiple CsAgent service commands, which can lead to buffer overflow. The third set of vulnerabilities, CVE-2007-5084, occur due to insufficient validation of strings used in SQL statements in multiple CsAgent service commands.

tags | advisory, remote, denial of service, overflow, arbitrary, vulnerability

advisories | CVE-2007-5082, CVE-2007-5083, CVE-2007-5084

SHA-256 | 363a6e7d492038cdb02283292599822fec694fd384becbbaf92e0cbd416cee51

Download | Favorite | View