Directory Traversal Vulnerability in CA License Client
CVE-2005-0583

Currently unrated

Key Information:

Vendor

Broadcom
Status
License Software
Vendor
CVE Published:
2 May 2005

What is CVE-2005-0583?

The CA License Client version 0.1.0.15 contains a directory traversal vulnerability that enables remote attackers to manipulate the server's file system. By exploiting this weakness through specially crafted PUTOLF requests, unauthorized users can create, modify, or delete files on the server. This flaw arises from inadequate validation of file paths, allowing the use of '..' (dot dot) sequences to navigate directories and execute malicious actions. Promptly updating to patched versions is crucial for mitigating this risk.

References

http://marc.info/?l=bugtraq&m=110979326828704&w=2
mailing-listx_refsource_BUGTRAQ
http://supportconnectw.ca.com/public/ca_common_docs/secur...
x_refsource_CONFIRM
http://www.idefense.com/application/poi/display?id=212&ty...
third-party-advisoryx_refsource_IDEFENSE

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.