Intrusion Prevention

CA.License.Manager.Long.Command

Description

This is an attempt to exploit a vulnerability in the Computer Associates License Management software.
The Computer Associates License Management software has multiple stack-based vulnerabilities resulting from incorrect handling of incoming text strings by the "LIC98RMT.EXE" component. This executable listens on TCP ports 10203 and 10204. Successful exploitation of these vulnerabilities will allow a remote attacker to execute code within the SYSTEM context.

Affected Products

CA License software versions v1.53 through v1.61.8.

Impact

System compromise, remote code execution.

Recommended Actions

Apply the patch according to the vendor advisory:

Coverage

IPS (Regular DB)
IPS (Extended DB)

ID	11940
Created	Jun 04, 2006
Updated	Nov 15, 2021
Risk
CVE ID	CVE-2005-0582
Exploit Prediction Score	87.75%
Default Action	drop
Active
Affected OS	Windows, Linux, Solaris
Affected App	CA

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Intrusion Prevention

CA.License.Manager.Long.Command

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

News/Research

Research Center

PSIRT Center

Services

By Outbreak

By Solution

By Product

Protect

Detect

Respond

Recover

Identify

Network Security

Endpoint Security

Application Security

Security Operations

Threat Intelligence Center

Resource Center

About

FortiGuard Labs

Partners

Intrusion Prevention

CA.License.Manager.Long.Command

Description

Affected Products

Impact

Recommended Actions

Telemetry

Coverage

Threat Intelligence
Center