Summary
| Detail | |||
|---|---|---|---|
| Vendor | Broadcom | First view | 2005-08-23 |
| Product | Cleverpath Ecm | Last view | 2007-07-25 |
| Version | Type | Application | |
| Update | |||
| Edition | |||
| Language | |||
| Sofware Edition | |||
| Target Software | |||
| Target Hardware | |||
| Other | |||
Activity : Overall
COMMON PLATFORM ENUMERATION: Repartition per Version
| CPE Name | Affected CVE |
|---|---|
| cpe:2.3:a:broadcom:cleverpath_ecm:3.5:*:*:*:*:*:*:* | 4 |
Related : CVE
| Date | Alert | Description | |
|---|---|---|---|
| 9.3 | 2007-07-25 | CVE-2007-0060 | Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11 Build 54_4 on Windows and NetWare, as used in CA Advantage Data Transport, eTrust Admin, certain BrightStor products, certain CleverPath products, and certain Unicenter products, allows remote attackers to execute arbitrary code via a crafted message to TCP port 3104. |
| 10 | 2005-08-23 | CVE-2005-2669 | Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows remote attackers to execute arbitrary commands via spoofed CAFT packets. |
| 10 | 2005-08-23 | CVE-2005-2668 | Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allow remote attackers to execute arbitrary code via unknown vectors. |
| 5 | 2005-08-23 | CVE-2005-2667 | Unknown vulnerability in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows attackers to cause a denial of service via unknown vectors, aka the "CAM TCP port vulnerability." |
SAINT Exploits
| Description | Link |
|---|---|
| Computer Associates Message Queuing | More info here |
Open Source Vulnerability Database (OSVDB)
| id | Description |
|---|---|
| 38598 | CA Multiple Products Message Queuing Server (Cam.exe) Remote Overflow |
| 18917 | CA Multiple Products Message Queuing Spoofed CAFT Request Arbitrary Command E... |
| 18916 | CA Multiple Products Message Queuing (CAM/CAFT) Multiple Remote Overflows |
| 18915 | CA Multiple Products Message Queuing (CAM/CAFT) Unspecified TCP Port DoS |
Snort® IPS/IDS
| Date | Description |
|---|---|
| 2014-01-10 | CA CAM log_security overflow attempt RuleID : 5316 - Type : SERVER-OTHER - Revision : 9 |
| 2016-03-22 | CA message queuing server buffer overflow attempt RuleID : 37725 - Type : SERVER-OTHER - Revision : 1 |
| 2014-01-10 | CA message queuing erroneous length field RuleID : 12254 - Type : EXPLOIT - Revision : 2 |
| 2014-01-10 | CA message queuing server buffer overflow attempt RuleID : 12197 - Type : SERVER-OTHER - Revision : 13 |
Nessus® Vulnerability Scanner
| id | Description |
|---|---|
| 2007-07-26 | Name: Arbitrary code can be executed on the remote host due to a flaw in the CAM se... File: cacam_overflow2.nasl - Type: ACT_GATHER_INFO |
| 2005-11-08 | Name: Arbitrary code can be executed on the remote host due to a flaw in the CAM se... File: cacam_overflow.nasl - Type: ACT_GATHER_INFO |
