CVE-2009-2026
CA Unicenter Software Delivery dtscore.dll Stack Overflow Vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Stack-based buffer overflow in a token searching function in the dtscore library in Data Transport Services in CA Software Delivery r11.2 C1, C2, C3, and SP4; Unicenter Software Delivery 4.0 C3; CA Advantage Data Transport 3.0 C1; and CA IT Client Manager r12 allows remote attackers to execute arbitrary code via crafted data.
Desbordamiento de búfer basado en pila en la función de búsqueda de "token" (testigo) en la librería dtscore de los servicios Data Transport Services de CA Software Delivery r11.2 C1, C2, C3, y SP4; Unicenter Software Delivery 4.0 C3; CA Advantage Data Transport 3.0 C1; y CA IT Client Manager r12.
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates Unicenter Software Delivery. Authentication is not required to exploit this vulnerability.
The specific flaw resides in the dtscore.dll library. The vulnerability is exposed through multiple processes listening on multiple ports. The vulnerable function is a token searching routine which will copy user supplied data into a fixed length stack buffer. Exploitation of this vulnerability leads to arbitrary code execution under the context of the SYSTEM user.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2009-06-09 CVE Reserved
- 2009-08-07 CVE Published
- 2024-02-08 EPSS Updated
- 2024-08-07 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer
CAPEC
References (9)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/56834 | Vdb Entry | |
| http://securitytracker.com/id?1022688 | Vdb Entry | |
| http://www.securityfocus.com/archive/1/505557/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/35984 | Vdb Entry | |
| http://www.zerodayinitiative.com/advisories/ZDI-09-052 | X_refsource_misc |
|
| https://exchange.xforce.ibmcloud.com/vulnerabilities/52322 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.vupen.com/english/advisories/2009/2195 | 2018-10-10 |
| URL | Date | SRC |
|---|---|---|
| http://secunia.com/advisories/36142 | 2018-10-10 | |
| https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=214090 | 2018-10-10 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ca Search vendor "Ca" | Advantage Data Transport Search vendor "Ca" for product "Advantage Data Transport" | 3.0 Search vendor "Ca" for product "Advantage Data Transport" and version "3.0" | c1 |
Affected
| ||||||
| Ca Search vendor "Ca" | It Client Manager Search vendor "Ca" for product "It Client Manager" | r12 Search vendor "Ca" for product "It Client Manager" and version "r12" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Software Delivery Search vendor "Ca" for product "Software Delivery" | r11 Search vendor "Ca" for product "Software Delivery" and version "r11" | c1 |
Affected
| ||||||
| Ca Search vendor "Ca" | Software Delivery Search vendor "Ca" for product "Software Delivery" | r11 Search vendor "Ca" for product "Software Delivery" and version "r11" | c2 |
Affected
| ||||||
| Ca Search vendor "Ca" | Software Delivery Search vendor "Ca" for product "Software Delivery" | r11 Search vendor "Ca" for product "Software Delivery" and version "r11" | c3 |
Affected
| ||||||
| Ca Search vendor "Ca" | Software Delivery Search vendor "Ca" for product "Software Delivery" | r11 Search vendor "Ca" for product "Software Delivery" and version "r11" | sp4 |
Affected
| ||||||
| Ca Search vendor "Ca" | Unicenter Software Delivery Search vendor "Ca" for product "Unicenter Software Delivery" | 4.0 Search vendor "Ca" for product "Unicenter Software Delivery" and version "4.0" | c3 |
Affected
| ||||||