Lucene search

[email protected]NVD:CVE-2005-3653

HistoryDec 31, 2005 - 5:00 a.m.

CVE-2005-3653

2005-12-3105:00:00

CWE-119

[email protected]

web.nvd.nist.gov

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.046 Low

EPSS

Percentile

92.6%

JSON

Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field.

Affected configurations

NVD

Node

broadcombrightstor_arcserve_backupMatch9.01

broadcombrightstor_arcserve_backupMatch11.1

broadcombrightstor_arcserve_backupMatch11.5

broadcombrightstor_arcserve_backup_laptops_desktopsMatch11.0

broadcombrightstor_arcserve_backup_laptops_desktopsMatch11.1

broadcombrightstor_portalMatch11.1

broadcombrightstor_process_automation_managerMatch11.1

broadcombrightstor_san_managerMatch11.1

broadcombrightstor_san_managerMatch11.5

broadcombrightstor_storage_resource_managerMatch6.3

broadcombrightstor_storage_resource_managerMatch6.4

broadcombrightstor_storage_resource_managerMatch11.1

broadcombrightstor_storage_resource_managerMatch11.5

broadcometrust_adminMatch8.1

broadcometrust_audit_ariesMatch8.0

broadcometrust_audit_irecorderMatch1.5sp2

broadcometrust_audit_irecorderMatch1.5sp3

broadcometrust_audit_irecorderMatch8.0

broadcometrust_identity_minderMatch8.0

broadcometrust_integrated_threat_managementMatch8.0

broadcomitechnology_igatewayRange≤4.0.050615

broadcomunicenter_asset_portfolio_managementMatch11.0

broadcomunicenter_autosys_jmMatch11.0

broadcomunicenter_service_deliveryMatch11.0

broadcomunicenter_service_deskMatch11.0

broadcomunicenter_service_desk_knowledge_toolsMatch11.0

broadcomunicenter_service_fulfillmentMatch2.2

broadcomunicenter_service_metric_analysisMatch11.0

cabrightstor_arcserve_backupMatch11windows

cabrightstor_enterprise_backupMatch10.0solaris

cabrightstor_enterprise_backupMatch10.5solaris

cabrightstor_enterprise_backupMatch10.5tru64

cabrightstor_enterprise_backupMatch10.5windows_64-bit

caetrust_audit_ariesMatch1.5sp2

caetrust_audit_ariesMatch1.5sp3

caetrust_directoryMatch8.1_web_components

caetrust_secure_content_managerMatch8.0

caunicenter_application_performance_monitorMatch11.0

caunicenter_application_server_managmentMatch11.0

caunicenter_ca_web_services_distributed_managementMatch11.0

caunicenter_exchange_management_consoleMatch11.0

caunicenter_managementMatch3.5websphere_mq

caunicenter_managementMatch11.0weblogic

caunicenter_managementMatch11.0websphere

caunicenter_service_catalog_fulfillment_accountingMatch11.0

caunicenter_service_fulfillmentMatch11.0

caunicenter_service_level_managementMatch11.0

caunicenter_web_server_managementMatch11.0

caunicenter_web_services_distributed_managementMatch11.0

References

marc.info/?l=full-disclosure&m=113803349715927&w=2

secunia.com/advisories/18591

securityreason.com/securityalert/380

securitytracker.com/id?1015526

supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp

www.idefense.com/intelligence/vulnerabilities/display.php?id=376

www.osvdb.org/22688

www.securityfocus.com/archive/1/423288/100/0/threaded

www.securityfocus.com/archive/1/423403/100/0/threaded

www.securityfocus.com/bid/16354

www.vupen.com/english/advisories/2006/0311

www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778

exchange.xforce.ibmcloud.com/vulnerabilities/24269

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

8 High

AI Score

Confidence

High

0.046 Low

EPSS

Percentile

92.6%

JSON

Related for NVD:CVE-2005-3653

cvelist1 cve1 nessus1 securityvulns2 checkpoint_advisories1