CVE-2007-3334

CA eTrust Secure Content Manager - Remote Code Execution via Heap-Based Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2007-3334. PoCs published by anonymous.

AI-analyzed exploit summary This exploit targets multiple buffer overflow vulnerabilities in CA eTrust Secure Content Manager's Ingress Database Server. It sends a crafted payload to crash the 'iigcc' or 'iijdbc' services, demonstrating a denial-of-service condition.

Description

Multiple heap-based buffer overflows in the (1) Communications Server (iigcc.exe) and (2) Data Access Server (iigcd.exe) components for Ingres Database Server 3.0.3, as used in CA (Computer Associates) products including eTrust Secure Content Manager r8 on Windows, allow remote attackers to execute arbitrary code via unknown vectors.

Exploits (1)

exploitdb WORKING POC VERIFIED

by anonymous · pythondoswindows

https://www.exploit-db.com/exploits/30224

View Code ZIP pw:eip

This exploit targets multiple buffer overflow vulnerabilities in CA eTrust Secure Content Manager's Ingress Database Server. It sends a crafted payload to crash the 'iigcc' or 'iijdbc' services, demonstrating a denial-of-service condition.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: CA eTrust Secure Content Manager (Ingress Database Server) 2.6

No auth needed

Prerequisites: Network access to the target service · Target service (iigcc or iijdbc) must be running

MITRE ATT&CK