Computer Associates Message Queuing DoS

Medium Nessus Network Monitor Plugin ID 3406

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote version of Computer Associates Message Queuing Service contains a flaw when handling specially crafted packets destined for port 4105. An attacker exploiting these flaws would be able to render the service unavailable.

Solution

Upgrade or patch according to vendor recommendations.

See Also

http://supportconnectw.ca.com/public/ca_common_docs/camessagsecurity_notice.asp

Plugin Details

Severity: Medium

ID: 3406

Family: Generic

Published: 2006/02/02

Modified: 2016/11/23

Risk Information

Risk Factor: Medium

CVSSv2

Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

CVSSv3

Base Score: 5.3

Temporal Score: 4.9

Vector: CVSS3#AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS3#E:F/RL:O/RC:C

Reference Information

CVE: CVE-2006-0530, CVE-2006-0529

BID: 16475