CA.iTechnology.iGateway.Service.Content-Length.Buffer.Overflow

description-logoDescription

This indicates an attack attempt against a buffer-overflow vulnerability in the iTechnology iGateway service of multiple Computer Associates' product. The vulnerability is caused by insufficient boundary checks of the value of the Content-Length header field in received HTTP requests.

affected-products-logoAffected Products

Computer Associates iTechnology iGateway prior to 4.0.050615

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Apply patch, available from the web site:
ftp://ftp.ca.com/pub/iTech/downloads

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)