CVE-2008-1786
Last modified
CVE-2008-1786 is a vulnerability of currently unknown severity. The DSM gui_cm_ctrls ActiveX control (gui_cm_ctrls.ocx), as used in multiple CA products including BrightStor ARCServe Backup for Laptops and Desktops r11.5, Desktop Management Suite r11.1 through r11.2 C2; Unicenter r11.1 through r11.2 C2; and Desktop and Server Management r11.1 through r11.2 C2 allows remote attackers to execute arbitrary code via crafted function arguments.. EPSS estimates a 6.82% chance of exploitation in the next 30 days.
Description
The DSM gui_cm_ctrls ActiveX control (gui_cm_ctrls.ocx), as used in multiple CA products including BrightStor ARCServe Backup for Laptops and Desktops r11.5, Desktop Management Suite r11.1 through r11.2 C2; Unicenter r11.1 through r11.2 C2; and Desktop and Server Management r11.1 through r11.2 C2 allows remote attackers to execute arbitrary code via crafted function arguments.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Computer Associates | Arcserve Backup Laptops And Desktops | r11.5 |
| Computer Associates | Desktop And Server Management | r11.1 |
| Computer Associates | Desktop And Server Management | r11.2 |
| Computer Associates | Desktop And Server Management | r11.2a |
| Computer Associates | Desktop And Server Management | r11.2c1 |
| Computer Associates | Desktop And Server Management | r11.2c2 |
| Computer Associates | Desktop Management Suite | r11.2 |
| Computer Associates | Desktop Management Suite | r11.2a |
| Computer Associates | Desktop Management Suite | r11.2c1 |
| Computer Associates | Desktop Management Suite | r11.2c2 |
| Computer Associates | Unicenter Asset Management | r11.1 |
| Computer Associates | Unicenter Asset Management | r11.2 |
| Computer Associates | Unicenter Asset Management | r11.2a |
| Computer Associates | Unicenter Asset Management | r11.2c1 |
| Computer Associates | Unicenter Asset Management | r11.2c2 |
| Computer Associates | Unicenter Desktop Management Bundle | r11.1 |
| Computer Associates | Unicenter Desktop Management Bundle | r11.2 |
| Computer Associates | Unicenter Desktop Management Bundle | r11.2a |
| Computer Associates | Unicenter Desktop Management Bundle | r11.2c1 |
| Computer Associates | Unicenter Desktop Management Bundle | r11.2c2 |
| Computer Associates | Unicenter Remote Control | r11.1 |
| Computer Associates | Unicenter Remote Control | r11.2 |
| Computer Associates | Unicenter Remote Control | r11.2a |
| Computer Associates | Unicenter Remote Control | r11.2c1 |
| Computer Associates | Unicenter Remote Control | r11.2c2 |
| Computer Associates | Unicenter Software Delivery | r11.1 |
| Computer Associates | Unicenter Software Delivery | r11.2 |
| Computer Associates | Unicenter Software Delivery | r11.2a |
| Computer Associates | Unicenter Software Delivery | r11.2c1 |
| Computer Associates | Unicenter Software Delivery | r11.2c2 |
References
- http://secunia.com/advisories/29837Vendor Advisory
- http://www.kb.cert.org/vuls/id/684883US Government Resource
- http://www.vupen.com/english/advisories/2008/1249/referencesVendor Advisory
- https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=174256Patch, Vendor Advisory
- http://secunia.com/advisories/29837Vendor Advisory
- http://www.kb.cert.org/vuls/id/684883US Government Resource
- http://www.vupen.com/english/advisories/2008/1249/referencesVendor Advisory
- https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=174256Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2008-1786?
How severe is CVE-2008-1786?
How do I fix CVE-2008-1786?
Are you affected by CVE-2008-1786?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST