2 matches found
CA iTechnology iGateway Service Content-Length Buffer (CVE-2005-3653)
Numerous Computer Associates CA products incorporate shared components that perform common tasks not specific to any one product. One such component is the CA iGateway service. The iGateway service is an XML-based interface that integrates with storage management applications and facilitates...
CVE-2005-3653
CVE-2005-3653 describes a heap-based buffer overflow in the CA iTechnology iGateway service, caused by insufficient boundary checks of the HTTP Content-Length header. An unauthenticated remote attacker can send a crafted HTTP request with a negative Content-Length to trigger a heap overflow, pote...