===============================================================
Layered Defense Advisory 27 June 2006
1) Affected Software
Computer Associates: eTrust Antivirus 8.0
Computer Associates: eTrust PestPatrol 8.0
Computer Associates: Integrated Threat Management 8.0
2) Severity
Rating: Medium risk
Impact: Execution of arbitrary code, rights escalation and at a minimum, denial of service.
3) Description of Vulnerability
A format string vulnerability was discovered within etrust Antivirus 8.0. The vulnerability is due to
improper processing of format strings within the scan job description field. An attacker could create a
scan job containing special crafted format strings that could potential lead to execution
of arbitrary code, rights escalation and at a minimum denial of service.
Other effected software identified by vendor:
Computer Associates: eTrust PestPatrol 8.0
Computer Associates: Integrated Threat Management 8.0
4) Solution
5) Time Table
05/04/2006 – Reported Vulnerability to Vendor.
06/27/2006 – Vulnerability fixed & public disclosure.
7) References
CAID: 34325
CAID Advisory link: http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34325
CVE Reference:
CVE-2006-3223 http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-3223
9) About Layered Defense
Layered Defense, Is a group of security professionals that work together on ethical Research, Testing
and Training within the information security arena.
http://www.layereddefense.com