15 matches found
CA ETrust Secure Content Manager integer overflow
Integer overflow in TCP/1882 service is not fixed in 180 days...
CVE-2011-0758
The eCS component ECSQdmn.exe in CA ETrust Secure Content Manager 8.0 and CA Gateway Security 8.1 allows remote attackers to cause a denial of service crash and execute arbitrary code via a crafted request to port 1882, involving an incorrect integer calculation and a heap-based buffer overflow...
Heap overflow
The eCS component ECSQdmn.exe in CA ETrust Secure Content Manager 8.0 and CA Gateway Security 8.1 allows remote attackers to cause a denial of service crash and execute arbitrary code via a crafted request to port 1882, involving an incorrect integer calculation and a heap-based buffer overflow...
(0Day) CA ETrust Secure Content Manager Common Services Transport Remote Code Execution Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates eTrust Secure Content Manager. Authentication is not required to exploit this vulnerability. The specific flaw exists in the eTrust Common Services Transport ECSQdmn.exe running on por...
CA Secure Content Manager FTP Gateway LIST Command Buffer Overflow (CVE-2008-2541)
CA eTrust Secure Content Manager SCM is a gateway product for Windows platform that secures, monitors, filters and blocks potential threats from messaging and Web traffic. It provides protection against malware, spam, phishing, P2P file sharing and prevents access to known spyware sites. All CA S...
CA eTrust Secure Content Manager Gateway FTP PASV Stack Overflow (CVE-2008-2541)
CA eTrust Secure Content Manager SCM is a gateway product for Windows platform that secures, monitors, filters and blocks potential threats from messaging and Web traffic. It provides protection against malware, spam, phishing, P2P file sharing and prevents access to known spyware sites. All CA S...
CA eTrust SCM Multiple HTTP Gateway Service Vulnerabilities
The host is installed with CA eTrust Secure Content Manager which is prone to arbitrary code execution and DoS Vulnerabilities. OpenVAS Vulnerability Test $Id: gbcaetrustscmmultvuln.nasl 5370 2017-02-20 15:24:26Z cfi $ CA eTrust SCM Multiple HTTP Gateway Service Vulnerabilities Authors: Veerendra...
CA ETrust Secure Content Manager Gateway multiple security vulnerabilities
Buffer overflow on FTP PASV and LIST commands...
Stack overflow
Multiple stack-based buffer overflows in the HTTP Gateway Service icihttp.exe in CA eTrust Secure Content Manager 8.0 allow remote attackers to execute arbitrary code or cause a denial of service via long FTP responses, related to 1 the file month field in a LIST command; 2 the PASV command; and ...
CVE-2008-2541
Multiple stack-based buffer overflows in the HTTP Gateway Service icihttp.exe in CA eTrust Secure Content Manager 8.0 allow remote attackers to execute arbitrary code or cause a denial of service via long FTP responses, related to 1 the file month field in a LIST command; 2 the PASV command; and ...
CVE-2008-2541
CA eTrust Secure Content Manager (SCM) HTTP Gateway Service (icihttp.exe) contains multiple stack-based buffer overflow vulnerabilities when handling FTP responses (LIST and PASV). CVE-2008-2541 allows remote, unauthenticated attackers to execute arbitrary code or cause DoS with SYSTEM privileges...
CA eTrust Secure Content Manager eCSqdmn远程拒绝服务漏洞
BUGTRAQ ID: 28888 eTrust Secure Content Manager(eTrust SCM)是独立、统一的网关解决方案,能够帮助企业从中央管理控制台防范资料窃密以及网络和信息传递威胁。 eTrust通用服务(传输)守护程序(eCSqdmn)处理用户提交的畸形数据时存在漏洞,远程攻击者可能利用此漏洞导致服务不可用。 监听在1882端口上的eTrust通用服务(传输)守护程序(eCSqdmn)没有检查客户端所传送的32位数字,如果远程攻击者在这个位置使用了畸形值的话,就会导致服务崩溃(但几秒钟后会自动重启),或触发死循环,导致100%的CPU使用率。 Compute...
iDefense Security Advisory 06.21.07: Ingres Database Multiple Heap Corruption Vulnerabilities
Ingres Database Multiple Heap Corruption Vulnerabilities iDefense Security Advisory 06.21.07 http://labs.idefense.com/intelligence/vulnerabilities/ Jun 21, 2007 I. BACKGROUND Ingres is the database backend used by default in several CA products. The SCM Secure Content Manager is one of the produc...
Ingress Database Server 2.6 - Multiple Remote Vulnerabilities
source: https://www.securityfocus.com/bid/24585/info Ingress Database Server included in CA eTrust Secure Content Manager is prone to multiple remote vulnerabilities, including multiple stack- and heap-based buffer-overflow issues, multiple pointer-overwrite issues, and an arbitrary-file-overwrit...
[Full-disclosure] Computer Associates Vet Antivirus Library Remote Heap Overflow
Date May 23, 2005 Vulnerability Computer Associates Vet library provides antivirus scan engine capabilities. Vet scan engines allow products to analyze various streams for malware. Vet is vulnerable to an integer wrap during the analysis of an OLE stream. The integer wrap causes an arbitrary heap...