CA Multiple Product InoCore.dll File Mapping Manipulation Local Overflow

2007-05-09T00:00:00
ID OSVDB:34586
Type osvdb
Reporter binagres()
Modified 2007-05-09T00:00:00

Description

Vulnerability Description

A buffer overflow exists in multiple CA products. InoCore.dll fails to validate file mappings resulting in a stack overflow. With a specially crafted file mapping, a local attacker can cause arbitrary code execution resulting in a loss of integrity.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, CA has released a patch to address this vulnerability.

Short Description

A buffer overflow exists in multiple CA products. InoCore.dll fails to validate file mappings resulting in a stack overflow. With a specially crafted file mapping, a local attacker can cause arbitrary code execution resulting in a loss of integrity.

References:

Vendor Specific Advisory URL Security Tracker: 1018043 Secunia Advisory ID:25202 Other Advisory URL: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530 Other Advisory URL: http://blog.48bits.com/?p=103 Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2007-05/0163.html FrSIRT Advisory: ADV-2007-1750 CVE-2007-2523 CERT VU: 788416 Bugtraq ID: 23906