Release DateJun 16, 2008 |
Severitycritical |
ImpactSystem Compromise: Remote attackers can gain control of vulnerable systems. |
DescriptionThis indicates an attempt to exploit a stack-based vulnerability in CA eTrust Secure Content Manager.This vulnerability may cause a buffer overflow when responding to overly long LIST commands via FTP. A remote attacker may exploit this to execute arbitrary code or cause denial of service. |
Affected ProductsCA eTrust Secure Content Manager 8.0. |
Recommended ActionsApply the patch, available from the following website:https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=search&searchID=QO99987 |
Coverage IPS
VCM |
Common Vulnerabilities and Exposures (CVE)CVE-2008-2541 |
Reference/shttp://www.securityfocus.com/bid/29528 (BugTraq)http://www.zerodayinitiative.com/advisories/ZDI-08-036 http://www.frsirt.com/english/advisories/2008/1741 (FrSIRT) |
