CA products using the DSM ListCtrl ActiveX control Security Notice - CA Technologies
{{search ? 'Close':'Search'}}

CA products using the DSM ListCtrl ActiveX control
Security Notice

Issued: March 27, 2008

CA's customer support is alerting customers to security risks in CA products that implement the DSM ListCtrl ActiveX control. A buffer overflow vulnerability exists that can allow a remote attacker to cause a denial of service or execute arbitrary code. CA has issued updates to address the vulnerability.

The vulnerability, CVE-2008-1472, is due to insufficient bounds checking by the ListCtrl AddColumn function. An attacker can cause a buffer overflow, which can lead to arbitrary code execution under the context of the user running the web browser.

Note:

For BrightStor ARCserve Backup for Laptops & Desktops, only the server installation is affected. Client installations are not affected.

For CA Desktop Management Suite, Unicenter Desktop Management Bundle, Unicenter Asset Management, Unicenter Software Delivery and Unicenter Remote Control, only the Managers and DSM Explorers are affected. Scalability Servers and Agents are not affected.

Risk Rating

High

Affected Products

  • BrightStor ARCServe Backup for Laptops and Desktops r11.5
  • CA Desktop Management Suite r11.2 C1
  • CA Desktop Management Suite r11.2a
  • CA Desktop Management Suite r11.2
  • CA Desktop Management Suite r11.1 (GA, a, C1)
  • Unicenter Desktop Management Bundle r11.2 C1
  • Unicenter Desktop Management Bundle r11.2a
  • Unicenter Desktop Management Bundle r11.2
  • Unicenter Desktop Management Bundle r11.1 (GA, a, C1)
  • Unicenter Asset Management r11.2 C1
  • Unicenter Asset Management r11.2a
  • Unicenter Asset Management r11.2
  • Unicenter Asset Management r11.1 (GA, a, C1)
  • Unicenter Software Delivery r11.2 C1
  • Unicenter Software Delivery r11.2a
  • Unicenter Software Delivery r11.2
  • Unicenter Software Delivery r11.1 (GA, a, C1)
  • Unicenter Remote Control r11.2 C1
  • Unicenter Remote Control r11.2a
  • Unicenter Remote Control r11.2
  • Unicenter Remote Control r11.1 (GA, a, C1)

How to determine if the installation is affected

For products on Windows:

  1. Using Windows Explorer, locate the file “ListCtrl.ocx”. By default, the file is in the “C:Program FilesCADSMbin” directory.
  2. Right click on the file and select Properties.
  3. Select the Version tab.
  4. If the file version is earlier than indicated in the below table, the installation is vulnerable.
Product File Name File Version
CA Desktop Management Suite for Windows r11.1 (GA, a, C1),
Unicenter Desktop Management Bundle r11.1 (GA, a, C1),
Unicenter Asset Management r11.1 (GA, a, C1),
Unicenter Software Delivery r11.1 (GA, a, C1),
Unicenter Remote Control r11.1 (GA, a, C1)
ListCtrl.ocx 11.1.8124.0
CA Desktop Management Suite for Windows r11.2,
Unicenter Desktop Management Bundle r11.2,
Unicenter Asset Management r11.2,
Unicenter Software Delivery r11.2,
Unicenter Remote Control r11.2
ListCtrl.ocx 11.2.1000.16
CA Desktop Management Suite for Windows r11.2a,
Unicenter Desktop Management Bundle r11.2a,
Unicenter Asset Management r11.2a,
Unicenter Software Delivery r11.2a,
Unicenter Remote Control r11.2a
ListCtrl.ocx 11.2.1000.16
CA Desktop Management Suite for Windows r11.2 C1,
Unicenter Desktop Management Bundle r11.2 C1,
Unicenter Asset Management r11.2 C1,
Unicenter Software Delivery r11.2 C1,
Unicenter Remote Control r11.2 C1,
BrightStor ARCserve Backup for Laptops and Desktops r11.5
ListCtrl.ocx 11.2.1000.16

Solution

CA has provided the following updates to address the vulnerabilities.

BrightStor ARCserve Backup for Laptops and Desktops r11.5:
QO96102

CA Desktop Management Suite for Windows r11.1 (GA, a, C1),
Unicenter Desktop Management Bundle r11.1 (GA, a, C1),
Unicenter Asset Management r11.1 (GA, a, C1),
Unicenter Software Delivery r11.1 (GA, a, C1),
Unicenter Remote Control r11.1 (GA, a, C1):
QO96088

CA Desktop Management Suite for Windows r11.2a,
Unicenter Desktop Management Bundle r11.2a,
Unicenter Asset Management r11.2a,
Unicenter Software Delivery r11.2a,
Unicenter Remote Control r11.2a:
QO96092

CA Desktop Management Suite for Windows r11.2,
Unicenter Desktop Management Bundle r11.2,
Unicenter Asset Management r11.2,
Unicenter Software Delivery r11.2,
Unicenter Remote Control r11.2:
QO96091

CA Desktop Management Suite for Windows r11.2 C1,
Unicenter Desktop Management Bundle r11.2 C1,
Unicenter Asset Management r11.2 C1,
Unicenter Software Delivery r11.2 C1,
Unicenter Remote Control r11.2 C1:
QO96090

Workaround

As a temporary workaround solution, disable the ListCtrl ActiveX control in the registry by setting the kill bit on CLSID %7BBF6EFFF3-4558-4C4C-ADAF-A87891C5F3A3%7D. Disabling the control may prevent the GUI from functioning correctly.

Refer to Microsoft KB article 240797 for information on how to disable an ActiveX control.

References

CVE-2008-1472 - DSM ListCtrl ActiveX control AddColumn buffer overflow

Change History

Version 1.0: Initial Release

If additional information is required, please contact CA Technical Support at http://support.ca.com.

If you discover a vulnerability in CA products, please report your findings to vuln AT ca DOT com, or utilize our "Submit a Vulnerability" form at http://www.ca.com/us/services-support/ca-support/ca-support-online/product-content/recommended-reading/security-notices/contact-information-for-ca-product-vulnerability-response-team.html.

Chat with CA

Just give us some brief information and we'll connect you to the right CA Expert.

Our hours of availability are 8AM - 5PM CST.

All Fields Required

connecting

We're matching your request.

Unfortunately, we can't connect you to an agent. If you are not automatically redirected please click here.

  • {{message.agentProfile.name}} will be helping you today.

    View Profile


  • Transfered to {{message.agentProfile.name}}

    {{message.agentProfile.name}} joined the conversation

    {{message.agentProfile.name}} left the conversation

  • Your chat with {{$storage.chatSession.messages[$index - 1].agentProfile.name}} has ended.
    Thank you for your interest in CA.


    How Did We Do?
    Let us know how we did so that we can maintain a quality experience.

    Take Our Survey >

    Rate Your Chat Experience.

    {{chat.statusMsg}}

agent is typing