Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3190

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-3190
Last Modified 05 Sep 2008 04:53:41
Published 13 Oct 2005 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-3190

Summary

Buffer overflow in Computer Associates (CA) iGateway 3.0 and 4.0 before 4.0.050623, when running in debug mode, allows remote attackers to execute arbitrary code via HTTP GET requests.

Vulnerable Systems

Application

  • Ca Igateway 3.0

  • Ca Igateway 4.0


References

CONFIRM - http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33485

XF - brightstor-igateway-http-get-bo(22560)

BID - 15025

OSVDB - 19920

SECTRACK - 1015045

SREASON - 86

SECUNIA - 17085

FULLDISC - 20051019 RE: CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability

FULLDISC - 20051014 CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability


Last Updated: 27 May 2016 10:40:50