Icihttp.exe in CA Gateway Security for HTTP, as used in CA Gateway Security 8.1 before 8.1.0.69 and CA Total Defense r12, does not properly parse URLs, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and daemon crash) via a malformed request.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2011-07-28T22:00:00
Updated: 2018-10-09T18:57:01
Reserved: 2011-07-06T00:00:00
Link: CVE-2011-2667
JSON object: View
NVD Information
Status : Modified
Published: 2011-07-28T22:55:02.390
Modified: 2023-11-07T02:07:44.260
Link: CVE-2011-2667
JSON object: View
Redhat Information
No data.
CWE