CVE-2008-3175 : Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCse

Integer underflow in rxRPC.dll in the LGServer service in the server in CA ARCserve Backup for Laptops and Desktops 11.0 through 11.5 allows remote attackers to execute arbitrary code or cause a denial of service via a crafted message that triggers a buffer overflow.

Published 2008-08-01 14:41:00

Updated 2021-04-08 13:31:09

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute codeDenial of service

Products affected by CVE-2008-3175

CA » Brightstor Arcserve Backup » Version: 11.0
cpe:2.3:a:ca:brightstor_arcserve_backup:11.0:*:*:*:*:*:*:*
Matching versions
CA » Brightstor Arcserve Backup » Version: 11.1 SP2 Edition
cpe:2.3:a:ca:brightstor_arcserve_backup:11.1:*:sp2:*:*:*:*:*
Matching versions
CA » Brightstor Arcserve Backup » Version: 11.1 SP1 Edition
cpe:2.3:a:ca:brightstor_arcserve_backup:11.1:*:sp1:*:*:*:*:*
Matching versions
CA » Protection Suites » Version: 3.1
cpe:2.3:a:ca:protection_suites:3.1:*:*:*:*:*:*:*
Matching versions
CA » Protection Suites » Version: 2
cpe:2.3:a:ca:protection_suites:2:*:*:*:*:*:*:*
Matching versions
CA » Protection Suites » Version: 3.0
cpe:2.3:a:ca:protection_suites:3.0:*:*:*:*:*:*:*
Matching versions
CA » Arcserve Backup For Laptops And Desktops » Version: 11.1
cpe:2.3:a:ca:arcserve_backup_for_laptops_and_desktops:11.1:*:*:*:*:*:*:*
Matching versions
CA » Arcserve Backup For Laptops And Desktops » Version: 11.1 SP1 Edition
cpe:2.3:a:ca:arcserve_backup_for_laptops_and_desktops:11.1:*:sp1:*:*:*:*:*
Matching versions
CA » Arcserve Backup For Laptops And Desktops » Version: 11.0
cpe:2.3:a:ca:arcserve_backup_for_laptops_and_desktops:11.0:*:*:*:*:*:*:*
Matching versions
CA » Arcserve Backup For Laptops And Desktops » Version: 11.1 SP2 Edition
cpe:2.3:a:ca:arcserve_backup_for_laptops_and_desktops:11.1:*:sp2:*:*:*:*:*
Matching versions
CA » Arcserve Backup For Laptops And Desktops » Version: 11.5
cpe:2.3:a:ca:arcserve_backup_for_laptops_and_desktops:11.5:*:*:*:*:*:*:*
Matching versions
Broadcom » Brightstor Arcserve Backup » Version: 11.1
cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.1:*:*:*:*:*:*:*
Matching versions
Broadcom » Brightstor Arcserve Backup » Version: 11.5
cpe:2.3:a:broadcom:brightstor_arcserve_backup:11.5:*:*:*:*:*:*:*
Matching versions
Broadcom » Desktop Management Suite » Version: 11.1
cpe:2.3:a:broadcom:desktop_management_suite:11.1:*:*:*:*:*:*:*
Matching versions
Broadcom » Desktop Management Suite » Version: 11.2
cpe:2.3:a:broadcom:desktop_management_suite:11.2:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2008-3175

EPSS FAQ

24.28%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 96 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2008-3175

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2008-3175

CWE-189

Assigned by: nvd@nist.gov (Primary)

References for CVE-2008-3175

Jump to

Vulnerability Details : CVE-2008-3175

Products affected by CVE-2008-3175

Exploit prediction scoring system (EPSS) score for CVE-2008-3175

CVSS scores for CVE-2008-3175

CWE ids for CVE-2008-3175

References for CVE-2008-3175