Detections
Analytics
CA Secure Content Manager HTTP Gateway Service FTP Vulnerabilities
critical Nessus Plugin ID 33108
Synopsis
A remote Windows host contains a program that is affected by multiple buffer overflow vulnerabilities.Description
The remote host is running Computer Associates' Secure Content Manager, a gateway product for filtering messaging and web traffic.The HTTP Gateway component ('icihttp.exe') of the version of Secure Content Manager installed on the remote host does not sufficiently check responses to FTP 'LIST' and 'PASV' commands before copying them into a stack buffer. An unauthenticated, remote attacker can leverage these issues to crash the affected service or to execute arbitrary code on the affected host with SYSTEM privileges.
Solution
Apply the QO99987 patch referenced in the CA advisory.See Also
https://www.zerodayinitiative.com/advisories/ZDI-08-035/
https://www.zerodayinitiative.com/advisories/ZDI-08-036/
http://dvlabs.tippingpoint.com/advisory/TPTI-08-05
https://seclists.org/bugtraq/2008/Jun/39
https://seclists.org/bugtraq/2008/Jun/40
https://seclists.org/bugtraq/2008/Jun/46
http://www.nessus.org/u?28aa23fd
https://www.securityfocus.com/archive/1/493124/30/0/threaded
Plugin Details
Severity: Critical
ID: 33108
File Name: ca_scm_icihttp_ftp_vulns.nasl
Version: 1.12
Type: local
Agent: windows
Family: Windows
Published: 6/9/2008
Updated: 11/15/2018
Supported Sensors: Nessus Agent, Nessus
Risk Information
VPR
Risk Factor: Medium
Score: 5.9
CVSS v2
Risk Factor: Critical
Base Score: 10
Temporal Score: 7.4
Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C
Vulnerability Information
Required KB Items: SMB/Registry/Enumerated
Exploit Ease: No known exploits are available
Reference Information
CVE: CVE-2008-2541
BID: 29528