CA License Software GETCONFIG Buffer Overflow

  Severity: MEDIUM
  CVE Identifier: CVE-2005-0581
  Advisory Date: JUL 21, 2015

  DESCRIPTION

cve: Multiple buffer overflows in Computer Associates (CA) License Client and Server 0.1.0.15 allow remote attackers to execute arbitrary code via (1) certain long fields in the Checksum item in a GCR request, (2) a long IP address, hostname, or netmask values in a GCR request, (3) a long last parameter in a GETCONFIG packet, or (4) long values in a request with an invalid format.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1000715
  Trend Micro Deep Security DPI Rule Name: 1000715 - CA License Software Client GETCONFIG Buffer Overflow

  AFFECTED SOFTWARE AND VERSION

  • Computer Associates License Client and Server 0.1.0.15

Featured Stories