What is CVE-2005-3190?

CVE-2005-3190 is a vulnerability in N/a. Published 2005-10-13.

Is CVE-2005-3190 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2005-3190

Buffer overflow in Computer Associates (CA) iGateway 3.0 and 4.0 before 4.0.050623, when running in debug mode, allows remote attackers to execute arbitrary code via HTTP GET requests.

EPSS: 0.787 (99.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

15025 (vdb-entry, x_refsource_BID)
www3.ca.com/securityadvisor/vulninfo/vuln.aspx (x_refsource_CONFIRM)
17085 (x_refsource_SECUNIA, third-party-advisory)
19920 (x_refsource_OSVDB, vdb-entry)
20051014 CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability (mailing-list, x_refsource_FULLDISC)
brightstor-igateway-http-get-bo(22560) (vdb-entry, x_refsource_XF)
1015045 (vdb-entry, x_refsource_SECTRACK)
20051019 RE: CAID 33485 - Computer Associates iGateway debug mode HTTP GET request buffer overflow vulnerability (mailing-list, x_refsource_FULLDISC)
86 (x_refsource_SREASON, third-party-advisory)

Frequently asked questions

What is CVE-2005-3190?: CVE-2005-3190 is a vulnerability in N/a. Published 2005-10-13.
Is CVE-2005-3190 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.