Buffer Overflow in CA ERwin Process Modeler by CA Technologies
CVE-2007-3695

Currently unrated

Key Information:

Vendor: Broadcom
Status: Erwin Process Modeler
Vendor: CVE Published:; 11 July 2007

What is CVE-2007-3695?

A buffer overflow vulnerability exists in the LICRCMD.EXE component of CA ERwin Process Modeler 7.1, allowing attackers to exploit the application through overly long filenames. This issue could enable the execution of arbitrary code, posing a potential security risk to systems running this software. It's important to note that the circumstances for exploitation may not necessitate an untrusted filename source, hinting that the risk may remain within privileged contexts.

References

http://www.eleytt.com/advisories/eleytt_ALLFUSIONLICRCMD.pdf

x_refsource_MISC

http://www.securityfocus.com/bid/24817

vdb-entryx_refsource_BID

http://osvdb.org/39597

vdb-entryx_refsource_OSVDB

Timeline

Vulnerability published
Jul 11, 2007
Vulnerability Reserved
Jul 11, 2007

Broadcom

What is CVE-2007-3695?

References

Timeline