Computer Associates Message Queuing

2005-11-29T00:00:00
ID SAINT:1058FC3D3CD99582E71E4017736F1361
Type saint
Reporter SAINT Corporation
Modified 2005-11-29T00:00:00

Description

Added: 11/29/2005
CVE: CVE-2005-2668
BID: 14622
OSVDB: 18916

Background

The Computer Associates Message Queuing service is used internally by multiple Computer Associates products.

Problem

The Computer Associates Message Queuing service is affected by multiple buffer overflows which could result in remote command execution.

Resolution

Install the patch referenced in the security notice.

References

<http://www.kb.cert.org/vuls/id/619988>

Limitations

Exploit may not work on versions other than Service Level management 3.5.

Platforms

Windows 2000
Windows XP / Windows XP SP1
Windows XP SP2
Windows Server 2003