CA License Software GETCONFIG Buffer Overflow
Gravité: : Medium
Identifiant(s) CVE: : CVE-2005-0581
Date du conseil: 21 juillet 2015
Description
cve: Multiple buffer overflows in Computer Associates (CA) License Client and Server 0.1.0.15 allow remote attackers to execute arbitrary code via (1) certain long fields in the Checksum item in a GCR request, (2) a long IP address, hostname, or netmask values in a GCR request, (3) a long last parameter in a GETCONFIG packet, or (4) long values in a request with an invalid format.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1000715
Trend Micro Deep Security DPI Rule Name: 1000715 - CA License Software Client GETCONFIG Buffer Overflow
Affected software and version:
- Computer Associates License Client and Server 0.1.0.15