CVE-2005-2668

The CVE-2005-2668 entry concerns the Computer Associates Message Queuing (CAM) service within CA Unicenter. Public references describe multiple buffer-overflow flaws in CAM’s MQ component that can be triggered remotely to execute arbitrary code on Windows hosts. Documented vulnerable targets incl...

CVE-2005-2669

CVE-2005-2669 affects Computer Associates Message Queuing Service (CAM/CAFT): vulnerable in CAM versions 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13. The root cause is a stack overflow in the remote service’s log_security function, which may allow an unauthenticated attacker to ex...

CVE-2005-2667

CA Message Queuing Service (CAM/CAFT) remote vulnerability affects versions 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13. Astack overflow in the log_security function may allow remote arbitrary code execution, with additional denial-of-service impact on TCP port 4105. Some sources ...

CVE-2005-3653

CVE-2005-3653 describes a heap-based buffer overflow in the CA iTechnology iGateway service, caused by insufficient boundary checks of the HTTP Content-Length header. An unauthenticated remote attacker can send a crafted HTTP request with a negative Content-Length to trigger a heap overflow, pote...

CVE-2007-0060

CA CVE-2007-0060 affects CA Message Queuing (CAM/CAFT) Server. A stack-based buffer overflow in CAM/CAFT before version 1.11 Build 54_4 on Windows/NetWare allows remote code execution by sending a crafted message to TCP port 3104. Impact described as remote arbitrary code execution with potential...

CVE-2007-1345

CVE-2007-1345 affects CA eTrust Admin (GINA component) cube.exe in versions 8.1.0–8.1.2. It allows attackers with physical interactive access or Remote Desktop to bypass authentication and escalate privileges via the password-reset interface. Root cause: privilege-escalation in the reset workflow...