Computer Associates Multiple Products Message Queuing Remote Stack Buffer Overflow Vulnerability

Computer Associates Multiple Products Message Queuing Remote Stack Buffer Overflow Vulnerability

Multiple Computer Associates products are prone to a remote stack-based buffer-overflow vulnerability. This issue affects the Message Queuing (CAM/CAFT) component. The application fails to properly bounds-check user-supplied data before copying it to an insufficiently sized buffer.

A successful exploit will allow an attacker to execute arbitrary code with SYSTEM-level privileges.

This issue affects all versions of the CA Message Queuing software prior to v1.11 Build 54_4 on Windows and NetWare.