CA eTrust antivirus multiple security vulnerabilities updated since 11.05.2007
Published:		12.05.2007
Source:		BUGTRAQ
SecurityVulns ID:		7696
Type:		remote
Level:		6/10
Description:		Local buffer overflow in task scheduler, remote buffer overflow in antiviral server (TCP/12168).

Affected:		CA : eTrust Integrated Threat Management 8
		CA : eTrust AntiVirus Server 8
		CA : eTrust Antivirus Agent 8
		CA : CA Anti-Spyware 8
		CA : CA Protection Suites 3
CVE:		CVE-2007-2523 (CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0.)
		CVE-2007-2522 (Stack-based buffer overflow in the inoweb Console Server in CA Anti-Virus for the Enterprise r8, Threat Manager r8, Anti-Spyware for the Enterprise r8, and Protection Suites r3 allows remote attackers to execute arbitrary code via a long (1) username or (2) password.)

Original document		CA, [CAID 35330, 35331]: CA Anti-Virus, CA Threat Manager, and CA Anti-Spyware Console Login and File Mapping Vulnerabilities (12.05.2007)
		binagres_(at)_gmail.com, Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability (11.05.2007)
		ZDI, ZDI-07-028: CA eTrust AntiVirus Server inoweb Buffer Overflow Vulnerability (11.05.2007)
		IDEFENSE, iDefense Security Advisory 05.09.07: Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability (11.05.2007)

Files:		Exploit for eTrust Antivirus Agent r8
Discuss:		Read or add your comments to this news (0 comments)