APP: Borland StarTeam Buffer Overflow
This signature detects attempts to exploit a known vulnerability in the Borland CaliberRM 2006. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the server.
Extended Description
Borland StarTeam Multicast Service is prone to a remote buffer-overflow vulnerability because it fails to properly bounds-check user-supplied input before copying it into an insufficiently sized buffer. An attacker can exploit this issue to execute arbitrary code with SYSTEM-level privileges. Successfully exploiting this issue will result in the complete compromise of affected computers. Failed exploit attempts will cause a denial-of-service condition. This issue affects Borland StarTeam Multicast Service 6.4 included in Borland CaliberRM 2006, 2007, and 2008. Other Borland products may also be affected.
Affected Products
Borland caliberrm
References
BugTraq: 28602
CVE: CVE-2008-0311
URL: http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=675
Short Name
APP:BORLAND-STARTEAM
Severity
Major
Recommended
False
Recommended Action
None
Category
APP
Keywords
Borland Buffer CVE-2008-0311 Overflow StarTeam bid:28602
Release Date
10/20/2009
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3730
Port
TCP/3057
False Positive
Unknown
Vendors
Borland
CVSS Score
9.3