CVE-2006-0306 - The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) Brigh

CVE-2006-0306

Summary

The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not handled, leading to a thread exit.

References

Vulnerable Configurations

cpe:2.3:a:ca:unicenter_remote_control:6.0_build_6.0.56.3:*:*:en:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0_build_6.0.56.3:*:*:en:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0:sp1:*:fr:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0:sp1:*:fr:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0_build_6.0.74:*:*:fr:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0_build_6.0.74:*:*:fr:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0:sp1:*:en:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0:sp1:*:en:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0_build_6.0.74:*:*:en:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0_build_6.0.74:*:*:en:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0_build_6.0.74:*:*:de:*:*:*:*
cpe:2.3:a:ca:unicenter_remote_control:6.0_build_6.0.74:*:*:de:*:*:*:*
cpe:2.3:a:broadcom:brightstor_mobile_backup:r4.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_mobile_backup:r4.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.1:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.1:sp1:*:*:*:*:*:*
cpe:2.3:a:broadcom:brightstor_arcserve_backup_laptops_desktops:11.1:sp1:*:*:*:*:*:*
cpe:2.3:a:broadcom:business_protection_suite:2.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:business_protection_suite:2.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:desktop_protection_suite:2.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:desktop_protection_suite:2.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:server_protection_suite:2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:server_protection_suite:2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:unicenter_remote_control:5.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:unicenter_remote_control:5.2:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:unicenter_remote_control:6.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:unicenter_remote_control:6.0:*:*:*:*:*:*:*
cpe:2.3:a:broadcom:unicenter_remote_control:6.0:sp1:*:*:*:*:*:*
cpe:2.3:a:broadcom:unicenter_remote_control:6.0:sp1:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 14-02-2024 - 01:17)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	PARTIAL

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:P

refmap via4

bid	16276
bugtraq	20060118 CAID 33756 - DM Deployment Common Component Vulnerabilities
confirm	http://supportconnectw.ca.com/public/ca_common_docs/dmdeploysecurity_notice.asp http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33756
misc	http://www.designfolks.com.au/karma/DMPrimer/
osvdb	22529
sectrack	1015504
secunia	18531
vupen	ADV-2006-0236

Last major update

14-02-2024 - 01:17

Published

19-01-2006 - 00:03

Last modified

14-02-2024 - 01:17