CVE-2007-2523

Related Files

CA Security Advisory 35330

Posted May 12, 2007

Authored by Ken Williams, Computer Associates | Site www3.ca.com

CA Anti-Virus for the Enterprise, CA Threat Manager, and CA Anti-Spyware contain multiple vulnerabilities that can allow an attacker to cause a denial of service or possibly execute arbitrary code. CA has issued patches to address the vulnerabilities.

tags | advisory, denial of service, arbitrary, vulnerability, virus

advisories | CVE-2007-2522, CVE-2007-2523

SHA-256 | 8f199a847ae100657c96161091769e0883d36aa803d130e150619b62423ebc0c

Download | Favorite | View

iDEFENSE Security Advisory 2007-05-09.2

Posted May 11, 2007

Authored by iDefense Labs, binagres | Site idefense.com

iDefense Security Advisory 05.09.07 - Local exploitation of a buffer overflow vulnerability in Computer Associates International Inc.'s (CA) eTrust Antivirus allows attackers to execute arbitrary code with SYSTEM privileges. The Task Service component of eTrust Antivirus, InoTask.exe, is used to schedule and execute tasks such as scanning the system for virii. The service uses a shared file mapping to share information about scheduled tasks. The file mapping has a NULL security descriptor, which allows any user to modify its contents. By modifying a string inside of this mapping an attacker can trigger a stack based overflow in the InoTask process. iDefense confirmed that CA eTrust Antivirus r8 on Windows is vulnerable.

tags | advisory, overflow, arbitrary, local

systems | windows

advisories | CVE-2007-2523

SHA-256 | 23745af47fac9dfdd602231dff89be840467e8837cb44af4d3af559b2314a15f

Download | Favorite | View