Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2005-0582Improper Restriction of Operations within the Bounds of a Memory Buffer in License Software

4 documents4 sources
Severity
10.0CRITICALNVD
EPSS
22.5%
top 4.15%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Broadcom License Software
Timeline
PublishedMay 2
Latest updateMay 1

Description

Buffer overflow in Computer Associates (CA) License Client 0.1.0.15 allows remote attackers to execute arbitrary code via a long filename in a PUTOLF request.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

Patches

Patch: supportconnectw.ca.comPatch: www.idefense.comPatch: supportconnectw.ca.com

🔴Vulnerability Details

2
GHSA
GHSA-xm47-42m3-whpm: Buffer overflow in Computer Associates (CA) License Client 02022-05-01
CVEList
CVE-2005-0582: Buffer overflow in Computer Associates (CA) License Client 02005-03-02

💥Exploits & PoCs

1
Exploit-DB
CA License Server - 'GETCONFIG' Remote Buffer Overflow2005-03-06
CVE-2005-0582 — Broadcom License Software vulnerability | cvebase