Computer Associates MLink "mllock" command vulnerable to buffer overflow via long string of characters

2002-05-16T00:00:00
ID VU:772915
Type cert
Reporter CERT
Modified 2002-05-16T00:00:00

Description

Overview

A locally exploitable buffer overflow exists in mllock.

Description

CA-MLINK is a managed data transport service. For more information about CA-MLINK, please see the product brochure.

Based on a public report, it appears there is a locally exploitable buffer overflow in the _mllock_command that is included with CA-MLINK.


Impact

A local attacker can execute arbitrary code on the vulnerable host.


Solution

The CERT/CC is currently unaware of a practical solution to this problem.


Systems Affected

Vendor| Status| Date Notified| Date Updated
---|---|---|---
Computer Associates| | 10 Apr 2002| 18 Apr 2002
If you are a vendor and your product is affected, let us know.

CVSS Metrics

Group | Score | Vector
---|---|---
Base | N/A | N/A
Temporal | N/A | N/A
Environmental | N/A | N/A

References

  • <http://www.securityfocus.com/bid/4441>

Credit

The CERT/CC credits KF <dotslash@snosoft.com> <http://www.snosoft.com> for discovering this vulnerability and working with us to further understand it.

This document was written by Ian A. Finlay.

Other Information

  • CVE IDs: Unknown
  • Date Public: 05 Apr 2002
  • Date First Published: 16 May 2002
  • Date Last Updated: 16 May 2002
  • Severity Metric: 9.38
  • Document Revision: 5