4 matches found
CA iTechnology iGateway Debug Mode Buffer Overflow
This module exploits a vulnerability in the Computer Associates iTechnology iGateway component. When True is enabled in igateway.conf non-default, it is possible to overwrite the stack and execute code remotely. This module works best with Ordinal payloads. This module requires Metasploit:...
CA iTechnology iGateway Service Content-Length Buffer Overflow
The remote host is using CA iTechnology iGateway service, a software component used in various products from CA. The version of the iGateway service installed on the remote host reportedly fails to sanitize Content-Length HTTP header values before using them to allocate heap memory. An attacker c...
CVE-2005-3653
CVE-2005-3653 describes a heap-based buffer overflow in the CA iTechnology iGateway service, caused by insufficient boundary checks of the HTTP Content-Length header. An unauthenticated remote attacker can send a crafted HTTP request with a negative Content-Length to trigger a heap overflow, pote...
CVE-2005-3653
Heap-based buffer overflow in the iGateway service for various Computer Associates CA iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field...