Remote Code Execution and Denial of Service Vulnerability in CA ETrust Secure Content Manager and CA Gateway Security

Remote Code Execution and Denial of Service Vulnerability in CA ETrust Secure Content Manager and CA Gateway Security

CVE-2011-0758 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The eCS component (ECSQdmn.exe) in CA ETrust Secure Content Manager 8.0 and CA Gateway Security 8.1 allows remote attackers to cause a denial of service (crash) and execute arbitrary code via a crafted request to port 1882, involving an incorrect integer calculation and a heap-based buffer overflow.

Learn more about our Web Application Penetration Testing UK.