Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.6
CVSSv2

CVE-2005-0581

Published: 02/05/2005 Updated: 09/04/2021
CVSS v2 Base Score: 4.6 | Impact Score: 6.4 | Exploitability Score: 3.9
VMScore: 480
Vector: AV:L/AC:L/Au:N/C:P/I:P/A:P
Subscribe to License Software

Vulnerability Summary

Multiple buffer overflows in Computer Associates (CA) License Client and Server 0.1.0.15 allow remote malicious users to execute arbitrary code via (1) certain long fields in the Checksum item in a GCR request, (2) a long IP address, hostname, or netmask values in a GCR request, (3) a long last parameter in a GETCONFIG packet, or (4) long values in a request with an invalid format.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

broadcom license software 0.1.0.15

Exploits

Exploit DB: CA License Server - 'GETCONFIG' Remote Buffer Overflow
/* Computer-Associates, License Service Stack Overflow Homepage: cacom Affected version: v161 and below (in eTrust, Unicenter, BrightStor, etc) Patched version: hotfix Link: cacom Date: 04 March 2005 Application Risk: Tsunami Internet Risk: High Dicovery Credits: Barnaby Jack (eeyecom) Exploit Credits : ...
Exploit DB: CA BrightStor ARCserve License Service - 'GCR NETWORK' Remote Buffer Overflow (Metasploit)
## # $Id: license_gcrrb 10892 2010-11-03 22:09:44Z mc $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metasp ...
Exploit DB: Computer Associates License Server - GETCONFIG Overflow (Metasploit)
## # $Id: calicserv_getconfigrb 10394 2010-09-20 08:06:27Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' c ...
Exploit DB: Computer Associates License Client - GETCONFIG Overflow (Metasploit)
## # $Id: calicclnt_getconfigrb 10394 2010-09-20 08:06:27Z jduck $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' c ...

References

NVD-CWE-Otherhttp://www.idefense.com/application/poi/display?id=215&type=vulnerabilitieshttp://www.idefense.com/application/poi/display?id=214&type=vulnerabilitieshttp://www.idefense.com/application/poi/display?id=213&type=vulnerabilitieshttp://www.idefense.com/application/poi/display?id=210&type=vulnerabilitieshttp://supportconnectw.ca.com/public/ca_common_docs/security_notice.asphttp://marc.info/?l=bugtraq&m=110979326828704&w=2https://nvd.nist.govhttps://www.exploit-db.com/exploits/859/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site request forgeryCVE-2024-34351CVE-2024-1076CVE-2024-25522CVE-2024-34547CVE-2024-4644unauthorizedremoteCVE-2024-4671
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook