CVE-2005-3653 Information
Description
Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products in iTechnology iGateway before 4.0.051230 allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field.
Reference
http://marc.info/?l=full-disclosure&m=113803349715927&w=2 http://secunia.com/advisories/18591 http://securityreason.com/securityalert/380 http://securitytracker.com/id?1015526 http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376 http://www.osvdb.org/22688 http://www.securityfocus.com/archive/1/423288/100/0/threaded http://www.securityfocus.com/archive/1/423403/100/0/threaded http://www.securityfocus.com/bid/16354 http://www.vupen.com/english/advisories/2006/0311 http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778 https://exchange.xforce.ibmcloud.com/vulnerabilities/24269
Share on: