Zero Day Initiative

TippingPoint Zero Day Initiative

ZDI STATISTICS...

# Created Cases:	1,360
# Researchers:	826
Avg. Verification Time:	16 days

CA ETrust Secure Content Manager Gateway FTP PASV Stack Overflow Vulnerability

ZDI-08-035: June 4th, 2008

CVE ID

Affected Vendors

Computer Associates

Affected Products

eTrust Secure Content Manager

Vulnerability Details

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates eTrust Secure Content Manager. Authentication is not required to exploit this vulnerability.

The specific flaw exists in the HTTP Gateway service icihttp.exe running on port 8080. By specifying a overly long response to a PASV command a stack buffer can be overflowed. Successful exploitation can lead to complete system compromise under the SYSTEM context.

Vendor Response

Computer Associates has issued an update to correct this vulnerability. More details can be found at:

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=177784

Disclosure Timeline

Credit

This vulnerability was discovered by:

Published Advisories

ZDI-08-053: Symantec

published 2008-08-14

ZDI-08-052: OpenLDAP Foundation

published 2008-08-14

ZDI-08-051: Microsoft

published 2008-08-12

ZDI-08-050: Microsoft

published 2008-08-12

ZDI-08-049: Microsoft

published 2008-08-12

Upcoming Advisories

RealNetworks

reported 2008-08-19, 7 days ago

reported 2008-08-19, 7 days ago

reported 2008-08-19, 7 days ago

reported 2008-07-15, 42 days ago

Sun Microsystems

reported 2008-07-14, 43 days ago

Recent Press

Where on earth are these Microsoft patches?

published 2008-08-14, ZDNet

Apple releases new Mac OS X 10.5.5

published 2008-07-31, ITWire

High-priority patch fixes critical vulns in RealPlayer

published 2008-07-25, The Register

Firefox 3.0.1 Fixes 'Carpet Bombing' Issue

published 2008-07-17, SlashDot

iPhone and iPod Touch updated with security patches

published 2008-07-11, CNET