CyberSec.Space Logo
Back to CVE Browser

CVE-2011-0758

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0980%
EPSS Percentile20.54th
PublishedFeb 10, 2011
Last ModifiedApr 29, 2026

Vulnerability Description

The eCS component (ECSQdmn.exe) in CA ETrust Secure Content Manager 8.0 and CA Gateway Security 8.1 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted request to port 1882, involving an incorrect integer calculation and a heap-based buffer overflow.

Affected Platforms (CPE)

πŸ“¦
Ca

Etrust Secure Content Manager

= 8.0
πŸ“¦
Ca

Gateway Security

= 8.1

References & Advisories

πŸ”— http://dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-ca
πŸ”— http://osvdb.org/70840
πŸ”— http://secunia.com/advisories/43200
πŸ”— http://securityreason.com/securityalert/8075
πŸ”— http://www.securityfocus.com/archive/1/516277/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/46253
πŸ”— http://www.securitytracker.com/id?1025052
πŸ”— http://www.vupen.com/english/advisories/2011/0306

Related Vulnerabilities

CVE-2005-169310.0

Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6.0, eTrust Antivirus r6.0 through 7.1, e...

CVE-2007-333410.0

Multiple heap-based buffer overflows in the (1) Communications Server (iigcc.exe) and (2) Data Access Server (iigcd.exe) component...

CVE-2008-254110.0

Multiple stack-based buffer overflows in the HTTP Gateway Service (icihttp.exe) in CA eTrust Secure Content Manager 8.0 allow remo...

CVE-2008-19847.8

The eTrust Common Services (Transport) Daemon (eCSqdmn) in CA Secure Content Manager 8.0.28000.511 and earlier allows remote attac...