CVE-2005-3653

Broadcom Brightstor Arcserve Backup < 4.0.050615 - Memory Corruption

Title source: rule

Description

Heap-based buffer overflow in the iGateway service for various Computer Associates (CA) iTechnology products, in iTechnology iGateway before 4.0.051230, allows remote attackers to execute arbitrary code via an HTTP request with a negative Content-Length field.

References (13)

Core 13

Core References

Patch vdb-entry x_refsource_osvdb

http://www.osvdb.org/22688

Patch vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/16354

Various Sources x_refsource_confirm

http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=33778

Third Party Advisory, VDB Entry vdb-entry x_refsource_xf

https://exchange.xforce.ibmcloud.com/vulnerabilities/24269

Patch vdb-entry x_refsource_sectrack

http://securitytracker.com/id?1015526

Mailing List mailing-list x_refsource_fulldisc

http://marc.info/?l=full-disclosure&m=113803349715927&w=2

Patch, Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/18591

Third Party Advisory third-party-advisory x_refsource_sreason

http://securityreason.com/securityalert/380

Vendor Advisory vdb-entry x_refsource_vupen

http://www.vupen.com/english/advisories/2006/0311

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/423288/100/0/threaded

Patch, Vendor Advisory third-party-advisory x_refsource_idefense

http://www.idefense.com/intelligence/vulnerabilities/display.php?id=376

Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq

http://www.securityfocus.com/archive/1/423403/100/0/threaded

Patch, Vendor Advisory x_refsource_confirm

http://supportconnectw.ca.com/public/ca_common_docs/igatewaysecurity_notice.asp

Scores

EPSS 0.3044

EPSS Percentile 96.8%

Details

CWE

CWE-119

Status published

Products (44)

broadcom/brightstor_arcserve_backup 9.01

broadcom/brightstor_arcserve_backup 11.1

broadcom/brightstor_arcserve_backup 11.5

broadcom/brightstor_arcserve_backup_laptops_desktops 11.0

broadcom/brightstor_arcserve_backup_laptops_desktops 11.1

broadcom/brightstor_portal 11.1

broadcom/brightstor_process_automation_manager 11.1

broadcom/brightstor_san_manager 11.1

broadcom/brightstor_san_manager 11.5

broadcom/brightstor_storage_resource_manager 6.3

... and 34 more

Published Dec 31, 2005

Tracked Since Feb 18, 2026