Detections
Analytics

Computer Associates Message Queuing DoS

medium Nessus Network Monitor Plugin ID 3406

Synopsis

The remote host is vulnerable to a Denial of Service (DoS) attack.

Description

The remote version of Computer Associates Message Queuing Service contains a flaw when handling specially crafted packets destined for port 4105. An attacker exploiting these flaws would be able to render the service unavailable.

Solution

Upgrade or patch according to vendor recommendations.

See Also

http://supportconnectw.ca.com/public/ca_common_docs/camessagsecurity_notice.asp

Plugin Details

Severity: Medium

ID: 3406

Family: Generic

Published: 2/2/2006

Updated: 3/6/2019

Nessus ID: 20840

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 4.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS v3

Risk Factor: Medium

Base Score: 5.3

Temporal Score: 4.9

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Temporal Vector: CVSS:3.0/E:F/RL:O/RC:C

Vulnerability Information

CPE: cpe:/a:ca:messaging

Reference Information

CVE: CVE-2006-0529, CVE-2006-0530

BID: 16475