CVE-2005-0581

Multiple buffer overflows in Computer Associates (CA) License Client and Server 0.1.0.15 allow remote attackers to execute arbitrary code via (1) certain long fields in the Checksum item in a GCR request, (2) a long IP address, hostname, or netmask values in a GCR request, (3) a long last parameter in a GETCONFIG packet, or (4) long values in a request with an invalid format.

• http://marc.info/?l=bugtraq&m=110979326828704&w=2
• http://supportconnectw.ca.com/public/ca_common_docs/security_notice.aspPatch, Vendor Advisory
• http://www.idefense.com/application/poi/display?id=210&type=vulnerabilitiesPatch, Vendor Advisory
• http://www.idefense.com/application/poi/display?id=213&type=vulnerabilitiesPatch, Vendor Advisory
• http://www.idefense.com/application/poi/display?id=214&type=vulnerabilitiesPatch, Vendor Advisory
• http://www.idefense.com/application/poi/display?id=215&type=vulnerabilitiesPatch, Vendor Advisory
• http://marc.info/?l=bugtraq&m=110979326828704&w=2
• http://supportconnectw.ca.com/public/ca_common_docs/security_notice.aspPatch, Vendor Advisory
• http://www.idefense.com/application/poi/display?id=210&type=vulnerabilitiesPatch, Vendor Advisory
• http://www.idefense.com/application/poi/display?id=213&type=vulnerabilitiesPatch, Vendor Advisory
• http://www.idefense.com/application/poi/display?id=214&type=vulnerabilitiesPatch, Vendor Advisory
• http://www.idefense.com/application/poi/display?id=215&type=vulnerabilitiesPatch, Vendor Advisory

Published

May 2, 2005

Last Modified

Jun 16, 2026

Status

Modified