CVE-2008-1328

CWE-119 — Buffer Overflow3 documents3 sources

Severity

9.3CRITICAL

EPSS

16.7%

top 5.06%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom Desktop Management Suite Computer Associates Arcserve Backup Laptops AND Desktops Computer Associates Desktop Management Suite

Timeline

PublishedApr 7

Latest updateMay 1

Description

Buffer overflow in the LGServer service in CA ARCserve Backup for Laptops and Desktops r11.0 through r11.5, and Suite 11.1 and 11.2, allows remote attackers to execute arbitrary code via unspecified "command arguments."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages3 packages

▶NVDcomputer_associates/arcserve_backup_laptops_and_desktopsr11.0, r11.1, r11.5+2

▶NVDbroadcom/desktop_management_suite11.1

▶NVDcomputer_associates/desktop_management_suite11.2

Patches

Patch: support.ca.com ↗Patch: support.ca.com ↗

🔴Vulnerability Details

GHSA

GHSA-2rmr-23wf-5jvq: Buffer overflow in the LGServer service in CA ARCserve Backup for Laptops and Desktops r11↗2022-05-01

▶

CVEList

CVE-2008-1328: Buffer overflow in the LGServer service in CA ARCserve Backup for Laptops and Desktops r11↗2008-04-07

▶