Intrusion Prevention

Borland.StarTeam.Multicast.Service.GMWebHandler.Buffer.Overflow

Description

This indicates an attempt to exploit a stack-based buffer overflow vulnerability in Borland CaliberRM 2006.
The vulnerability is caused by an input validation error in the PGMWebHandler::parse_request function in the StarTeam Multicast Service component while processing an HTTP request. Remote attackers may be able to execute arbitrary code by sending an HTTP request with an overly long URI.

Affected Products

Borland CaliberRM 2006

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Upgrade to the latest version, available from the following website:
http://www.borland.com/downloads/download_starteam.html

CVE References

CVE-2008-0311