Temmu 1,931 Posted August 15, 2008 iTechnology iGateway 4; iSponsor"allows isponsors to publish and run methods."what is this??a spam generator loaded on my machine by CA brightstor acrserve??ms msdn documents isponsorbut.google shows it has a security vulnerability. so?what is it?ideas?? Share this post Link to post Share on other sites
Guest LilBambi Posted August 15, 2008 Apparently, its' legit according to CastleCops: Name iTechnology iGateway 4.2 (iGateway)Command igateway.exeStatus LDescription Related to iTechnology_Application Server from Computer Associates International, Inc. Note: Located in \%Program Files%\CA\SharedComponents\iTechnology\Windows errors related to igateway.exe?igateway.exe is a iTechnology Application Server from Computer Associates International, Inc. belonging to iTechnology iGatewayAnd also here at liutilities.com:igateway.exe - igateway process informationProcess name: iTechnology Application ServerWindows errors related to igateway.exe?igateway.exe is a iTechnology Application Server from Computer Associates International, Inc. belonging to iTechnology iGatewayHere's CA's link on it: CA iTechnology iGateway service HTTP Content-Length buffer overflow vulnerability Hmmm, I see your problem Temmu! Share this post Link to post Share on other sites
Guest LilBambi Posted August 15, 2008 This SecuriTeam posting might help:Computer Associates iTechnology iGateway Service Content-Length Buffer Overflow 24 Jan. 2006 Summary"iTechnology is an integration technology which provides standard web service interfaces to third-party products, exposing normalized security event data and information in XML format."By using negative buffer length with Computer Associates iTechnology iGateway Service attackers can execute arbitrary code.Two, Two, Two things in one!Was it created originally by Wrigley? Share this post Link to post Share on other sites
Temmu 1,931 Posted August 18, 2008 thanks for the replies, but i still don't like the concept... Share this post Link to post Share on other sites
