CyberSec.Space Logo
返回 CVE 浏览器

CVE-2008-1786

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.1430%
EPSS Percentile19.96th
Published2008年4月16日
Last Modified2026年4月23日

Vulnerability Description

The DSM gui_cm_ctrls ActiveX control (gui_cm_ctrls.ocx), as used in multiple CA products including BrightStor ARCServe Backup for Laptops and Desktops r11.5, Desktop Management Suite r11.1 through r11.2 C2; Unicenter r11.1 through r11.2 C2; and Desktop and Server Management r11.1 through r11.2 C2 allows remote attackers to execute arbitrary code via crafted function arguments.

Affected Platforms (CPE)

📦
Computer Associates

Arcserve Backup Laptops And Desktops

= r11.5
📦
Computer Associates

Desktop And Server Management

= r11.1
📦
Computer Associates

Desktop And Server Management

= r11.2
📦
Computer Associates

Desktop And Server Management

= r11.2a
📦
Computer Associates

Desktop And Server Management

= r11.2c1
📦
Computer Associates

Desktop And Server Management

= r11.2c2
📦
Computer Associates

Desktop Management Suite

= r11.2
📦
Computer Associates

Desktop Management Suite

= r11.2a
📦
Computer Associates

Desktop Management Suite

= r11.2c1
📦
Computer Associates

Desktop Management Suite

= r11.2c2
📦
Computer Associates

Unicenter Asset Management

= r11.1
📦
Computer Associates

Unicenter Asset Management

= r11.2
📦
Computer Associates

Unicenter Asset Management

= r11.2a
📦
Computer Associates

Unicenter Asset Management

= r11.2c1
📦
Computer Associates

Unicenter Asset Management

= r11.2c2
📦
Computer Associates

Unicenter Desktop Management Bundle

= r11.1
📦
Computer Associates

Unicenter Desktop Management Bundle

= r11.2
📦
Computer Associates

Unicenter Desktop Management Bundle

= r11.2a
📦
Computer Associates

Unicenter Desktop Management Bundle

= r11.2c1
📦
Computer Associates

Unicenter Desktop Management Bundle

= r11.2c2
📦
Computer Associates

Unicenter Remote Control

= r11.1
📦
Computer Associates

Unicenter Remote Control

= r11.2
📦
Computer Associates

Unicenter Remote Control

= r11.2a
📦
Computer Associates

Unicenter Remote Control

= r11.2c1
📦
Computer Associates

Unicenter Remote Control

= r11.2c2
📦
Computer Associates

Unicenter Software Delivery

= r11.1
📦
Computer Associates

Unicenter Software Delivery

= r11.2
📦
Computer Associates

Unicenter Software Delivery

= r11.2a
📦
Computer Associates

Unicenter Software Delivery

= r11.2c1
📦
Computer Associates

Unicenter Software Delivery

= r11.2c2

References & Advisories

🔗 http://community.ca.com/blogs/casecurityresponseblog/archive/2008/04/16/ca-dsm-gui-cm-ctrls-activex-control-vulnerability.aspx
🔗 http://secunia.com/advisories/29837
🔗 http://www.kb.cert.org/vuls/id/684883
🔗 http://www.securityfocus.com/archive/1/490959/100/0/threaded
🔗 http://www.securityfocus.com/bid/28809
🔗 http://www.securitytracker.com/id?1019872
🔗 http://www.vupen.com/english/advisories/2008/1249/references
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/41853

相关漏洞威胁

CVE-2007-500310.0

Multiple stack-based buffer overflows in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11.0 throug...

CVE-2007-044910.0

Multiple buffer overflows in LGSERVER.EXE in CA BrightStor ARCserve Backup for Laptops and Desktops r11.0 through r11.1 SP1, Mobil...

CVE-2007-321610.0

Multiple buffer overflows in the LGServer component of CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktop...

CVE-2007-500510.0

Directory traversal vulnerability in rxRPC.dll in CA (Computer Associates) BrightStor ARCserve Backup for Laptops and Desktops r11...