CVE-2005-3190

Computer Associates iGateway <4.0.050623 - RCE

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 3 public exploits for CVE-2005-3190. PoCs published by Metasploit, egm, including Metasploit module exploits/windows/http/ca_igateway_debug.

AI-analyzed exploit summary This Metasploit module exploits a stack-based buffer overflow in CA iTechnology iGateway when debug mode is enabled, allowing remote code execution via a crafted HTTP GET request.

Description

Buffer overflow in Computer Associates (CA) iGateway 3.0 and 4.0 before 4.0.050623, when running in debug mode, allows remote attackers to execute arbitrary code via HTTP GET requests.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16801

This Metasploit module exploits a stack-based buffer overflow in CA iTechnology iGateway when debug mode is enabled, allowing remote code execution via a crafted HTTP GET request.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: CA iTechnology iGateway 3.0.40621.0
No auth needed
Prerequisites: Debug mode enabled in igateway.conf · Network access to port 5250
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by egm · cremotewindows
https://www.exploit-db.com/exploits/1243

This exploit targets a buffer overflow vulnerability in CA iGateway debug interface. It sends a crafted HTTP GET request with a large buffer containing NOP sleds, a return address, and Metasploit-generated shellcode to achieve remote code execution.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: CA iGateway (version not specified)
No auth needed
Prerequisites: Network access to target on port 5250 · Vulnerable CA iGateway instance
devstral-2 · analyzed Feb 16, 2026 Full analysis →
metasploit WORKING POC NORMAL
rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/http/ca_igateway_debug.rb

This Metasploit module exploits a stack-based buffer overflow in CA iTechnology iGateway when debug mode is enabled, allowing remote code execution via a crafted HTTP GET request. It targets a specific return address in xerces-c_2_1_0.dll for SEH-based exploitation.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: CA iTechnology iGateway 3.0.40621.0
No auth needed
Prerequisites: Debug mode enabled in igateway.conf · Network access to TCP port 5250
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (9)

Core 9
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/15025
Third Party Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/17085
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/19920
Third Party Advisory mailing-list x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0349.html
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/22560
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://securitytracker.com/id?1015045
Third Party Advisory mailing-list x_refsource_fulldisc
http://archives.neohapsis.com/archives/fulldisclosure/2005-10/0418.html
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/86

Scores

EPSS 0.6562
EPSS Percentile 99.2%

Details

Status published
Products (2)
broadcom/igateway 3.0
broadcom/igateway 4.0
Published Oct 13, 2005
Tracked Since Feb 18, 2026