CVE-2005-0581

Name of the Vulnerable Software and Affected Versions CA License Client and Server version 0.1.0.15

Description The issue is related to multiple buffer overflows that allow remote attackers to execute arbitrary code. This can be achieved through various means, including certain long fields in the Checksum item in a GCR request, a long IP address, hostname, or netmask values in a GCR request, a long last parameter in a GETCONFIG packet, or long values in a request with an invalid format.

Recommendations For CA License Client and Server version 0.1.0.15, consider restricting access to the GCR request and GETCONFIG packet handling functions until a patch is available. As a temporary workaround, avoid using long values in requests to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.