CVE

Id
14396  
CVE No.
CVE-2005-3190  
Status
Candidate  
Description
Buffer overflow in Computer Associates (CA) iGateway 3.0 and 4.0 before 4.0.050623, when running in debug mode, allows remote attackers to execute arbitrary code via HTTP GET requests.  
Phase
Assigned (20051013)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
107570 14396 CVE-2005-3190 FULLDISC:20051014 CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability  View
107571 14396 CVE-2005-3190 URL:http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0349.html  View
107572 14396 CVE-2005-3190 FULLDISC:20051019 RE: CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability  View
107573 14396 CVE-2005-3190 URL:http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0418.html  View
107574 14396 CVE-2005-3190 CONFIRM:http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33485  View
107575 14396 CVE-2005-3190 BID:15025  View
107576 14396 CVE-2005-3190 URL:http://www.securityfocus.com/bid/15025  View
107577 14396 CVE-2005-3190 OSVDB:19920  View
107578 14396 CVE-2005-3190 URL:http://www.osvdb.org/19920  View
107579 14396 CVE-2005-3190 SECTRACK:1015045  View
107580 14396 CVE-2005-3190 URL:http://securitytracker.com/id?1015045  View
107581 14396 CVE-2005-3190 SECUNIA:17085  View
107582 14396 CVE-2005-3190 URL:http://secunia.com/advisories/17085  View
107583 14396 CVE-2005-3190 SREASON:86  View
107584 14396 CVE-2005-3190 URL:http://securityreason.com/securityalert/86  View
107585 14396 CVE-2005-3190 XF:brightstor-igateway-http-get-bo(22560)  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
62514 JVNDB-2005-000716 Xpdf の StreamPredictor::StreamPredictor() 関数におけるヒープオーバーフローの脆弱性 Xpdf には xpdf/Stream.cc の StreamPredictor::StreamPredictor() 関数において、numComps の値に対する境界チェックが不適切であるため、不正な numComps により必要なサイズより少ないメモリ領域が確保され、結果としてヒープオーバーフローが発生する脆弱性が存在します。 CVE-2005-3192 14396 7.5 http://jvndb.jvn.jp/ja/contents/2005/JVNDB-2005-000716.html  View