CA ARCServe Message Engine Service Vulnerability
Technical Details
CA ARCserve is vulnerable to a Denial of Service when a crafted
RPC packet is sent to the Message engine service listening at
6503/TCP port.
The interface informations are as follows:
[
uuid(dc246bf0-7a7a-11ce-9f88-00805fe43838),
version(1.0)
]
interface mIDA_interface
{
typedef struct struct_9 {
long elem_1;
long elem_2;
char * elem_3;
char * elem_4;
long elem_5;
long elem_6;
long elem_7;
long elem_8;
short elem_9;
short elem_10;
} struct_9 ;
/* opcode: 0x3B, */
long (
[in, out] struct struct_9 * arg_1
);
}
Any request made to this interface for the above opnum with invalid stub data results in a DoS condition due to RPC marshalling error.
Affected Software
CA ARCserver Backup r12 SP1
Other versions may also be affected
Impact
Vendor Response
Credits
This vulnerability was discovered by Nibin Varghese from iViZ Security Research Team.
