CA License Software GETCONFIG Buffer Overflow
Severity: MEDIUM
CVE Identifier: CVE-2005-0581
Advisory Date: JUL 21, 2015
DESCRIPTION
cve: Multiple buffer overflows in Computer Associates (CA) License Client and Server 0.1.0.15 allow remote attackers to execute arbitrary code via (1) certain long fields in the Checksum item in a GCR request, (2) a long IP address, hostname, or netmask values in a GCR request, (3) a long last parameter in a GETCONFIG packet, or (4) long values in a request with an invalid format.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000715
Trend Micro Deep Security DPI Rule Name: 1000715 - CA License Software Client GETCONFIG Buffer Overflow
AFFECTED SOFTWARE AND VERSION
- Computer Associates License Client and Server 0.1.0.15