返回 CVE 浏览器

CVE-2011-0758

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0980%

EPSS Percentile20.54th

Published2011年2月10日

Last Modified2026年4月29日

Vulnerability Description

The eCS component (ECSQdmn.exe) in CA ETrust Secure Content Manager 8.0 and CA Gateway Security 8.1 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted request to port 1882, involving an incorrect integer calculation and a heap-based buffer overflow.

Affected Platforms (CPE)

📦

Ca

Etrust Secure Content Manager

= 8.0

📦

Ca

Gateway Security

= 8.1

References & Advisories

🔗 http://dvlabs.tippingpoint.com/blog/2011/02/07/zdi-disclosure-ca

🔗 http://osvdb.org/70840

🔗 http://secunia.com/advisories/43200

🔗 http://securityreason.com/securityalert/8075

🔗 http://www.securityfocus.com/archive/1/516277/100/0/threaded

🔗 http://www.securityfocus.com/bid/46253

🔗 http://www.securitytracker.com/id?1025052

🔗 http://www.vupen.com/english/advisories/2011/0306

相关漏洞威胁

CVE-2005-169310.0

Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6.0, eTrust Antivirus r6.0 through 7.1, e...

CVE-2007-333410.0

Multiple heap-based buffer overflows in the (1) Communications Server (iigcc.exe) and (2) Data Access Server (iigcd.exe) component...

CVE-2008-254110.0

Multiple stack-based buffer overflows in the HTTP Gateway Service (icihttp.exe) in CA eTrust Secure Content Manager 8.0 allow remo...

CVE-2008-19847.8

The eTrust Common Services (Transport) Daemon (eCSqdmn) in CA Secure Content Manager 8.0.28000.511 and earlier allows remote attac...