Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
certCERTVU:788416
HistoryMay 11, 2007 - 12:00 a.m.

Computer Associates AntiVirus InoTask buffer overflow vulnerability

2007-05-1100:00:00
www.kb.cert.org
12

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

17.9%

JSON

Overview

Computer Associates AntiVirus for the Enterprise and Threat Manager products contain a buffer overflow vulnerability that may be exploited by local users to execute code with elevated privileges.

Description

Computer Associates eTrust Antivirus v8 includes a component called InoTask. InoTask is used to schedule and lauch tasks and programs.

The InoTask process contains a buffer overflow vulnerability. By sending malformed data to the InoTask process, a user may be able to execute code with elevated privileges. Note that publicly available exploit code exists for this vulnerability.

Impact

A local user may be able to execute code with system privileges.

Solution

Upgrade

Computer Associates has released an update to address this vulnerability. This update is available as part of the automatic content update. See Computer Associates’ secnotice050807 for more details.

Vendor Information

788416

Filter by status: All Affected Not Affected Unknown

Filter by content: __ Additional information available

__ Sort by: Status Alphabetical

Expand all

Javascript is disabled. Click here to view vendors.

Computer Associates __ Affected

Updated: May 11, 2007

Status

Affected

Vendor Statement

We have not received a statement from the vendor.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Addendum

See <http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp&gt; for more details.

If you have feedback, comments, or additional information about this vulnerability, please send us [email](<mailto:[email protected]?Subject=VU%23788416 Feedback>).

CVSS Metrics

Group Score Vector
Base
Temporal
Environmental

References

Acknowledgements

Thanks to iDefense for information that was used in this report. iDefense credits binagres for discovering this vulnerability.

This document was written by Ryan Giobbi.

Other Information

CVE IDs: CVE-2007-2523
Severity Metric: 0.29 Date Public:

Related

prion 1
nessus 1
securityvulns 3
cve 1
prion
prion
Stack overflow
2007-05-11 04:20:00
nessus
nessus
CA Multiple Products InoCore.dll File Mapping Manipulation Local Overflow
2007-05-16 00:00:00
securityvulns
securityvulns
iDefense Security Advisory 05.09.07: Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability
2007-05-11 00:00:00
CA eTrust antivirus multiple security vulnerabilities
2007-05-12 00:00:00
[CAID 35330, 35331]: CA Anti-Virus, CA Threat Manager, and CA Anti-Spyware Console Login and File Mapping Vulnerabilities
2007-05-12 00:00:00
cve
cve
CVE-2007-2523
2007-05-11 04:20:00

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

17.9%

JSON
Related for VU:788416
prion1nessus1securityvulns3cve1