Vulnerability CVE-2005-3653


Published: 2005-12-31   Modified: 2012-02-12

Description:
Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field.

See advisories in our WLB2 database:
Topic
Author
Date
High
CA iGateway Content-Length Buffer Overflow Vulnerability [v1.1]
Erika Mendoza
28.01.2006

Type:

CWE-119

(Improper Restriction of Operations within the Bounds of a Memory Buffer)

Vendor: CA
Product: Brightstor arcserve backup 
Version:
9.01
11.5
11.1
11
Product: Etrust directory 
Version: 8.1_web_components;
Product: Etrust admin 
Version: 8.1;
Product: Etrust identity minder 
Version: 8.0;
Product: Etrust secure content manager 
Version: 8.0;
Product: Etrust integrated threat management 
Version: 8.0;
Product: Etrust audit aries 
Version: 8.0; 1.5;
Product: Etrust audit irecorder 
Version: 8.0; 1.5;
Product: Brightstor storage resource manager 
Version:
6.4
6.3
11.5
11.1
Product: Itechnology igateway 
Version: 4.0.050615;
Product: Unicenter management 
Version: 3.5; 11.0;
Product: Unicenter service fulfillment 
Version: 2.2; 11.0;
Product: Brightstor san manager 
Version: 11.5; 11.1;
Product: Brightstor arcserve backup laptops desktops 
Version: 11.1; 11.0;
Product: Brightstor process automation manager 
Version: 11.1;
Product: Brightstor portal 
Version: 11.1;
Product: Unicenter service desk knowledge tools 
Version: 11.0;
Product: Unicenter application server managment 
Version: 11.0;
Product: Unicenter service catalog fulfillment accounting 
Version: 11.0;
Product: Unicenter autosys jm 
Version: 11.0;
Product: Unicenter service metric analysis 
Version: 11.0;
Product: Unicenter service desk 
Version: 11.0;
Product: Unicenter exchange management console 
Version: 11.0;
Product: Unicenter application performance monitor 
Version: 11.0;
Product: Unicenter web services distributed management 
Version: 11.0;
Product: Unicenter asset portfolio management 
Version: 11.0;
Product: Unicenter service level management 
Version: 11.0;
Product: Unicenter service delivery 
Version: 11.0;
Product: Unicenter ca web services distributed management 
Version: 11.0;
Product: Unicenter web server management 
Version: 11.0;
Product: Brightstor enterprise backup 
Version: 10.5; 10.0;

CVSS2 => (AV:N/AC:L/Au:N/C:C/I:C/A:C)

CVSS Base Score
Impact Subscore
Exploitability Subscore
10/10
10/10
10/10
Exploit range
Attack complexity
Authentication
Remote
Low
No required
Confidentiality impact
Integrity impact
Availability impact
Complete
Complete
Complete

 References:
http://marc.info/?l=full-disclosure&m=113803349715927&w=2
http://securityreason.com/securityalert/380
http://securitytracker.com/id?1015526
http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376
http://www.securityfocus.com/archive/1/423288/100/0/threaded
http://www.securityfocus.com/archive/1/423403/100/0/threaded
http://www.securityfocus.com/bid/16354
http://www.vupen.com/english/advisories/2006/0311
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778
https://exchange.xforce.ibmcloud.com/vulnerabilities/24269

Related CVE
CVE-2019-7394
A privilege escalation vulnerability in the administrative user interface of CA Technologies CA Strong Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 7.1.x and CA Risk Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 3.1.x allows an authenticated attacker to g...
CVE-2019-7393
A UI redress vulnerability in the administrative user interface of CA Technologies CA Strong Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 7.1.x and CA Risk Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 3.1.x may allow a remote attacker to gain sensitive i...
CVE-2019-7392
An improper authentication vulnerability in CA Privileged Access Manager 3.x Web-UI jk-manager and jk-status allows a remote attacker to gain sensitive information or alter configuration.
CVE-2018-19635
CA Service Desk Manager 14.1 and 17 contain a vulnerability that can allow a malicious actor to escalate privileges in the user interface.
CVE-2018-19634
CA Service Desk Manager 14.1 and 17 contain a vulnerability that can allow a malicious actor to access survey information.
CVE-2018-13826
An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks.
CVE-2018-13825
Insufficient input validation in the gridExcelExport functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute reflected cross-site scripting attacks.
CVE-2018-13824
Insufficient input sanitization of two parameters in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute SQL injection attacks.

Copyright 2019, cxsecurity.com

 

Back to Top