4 matches found
Design/Logic Flaw
The XML Security Database Parser class in the XMLSecDB ActiveX control in the HIPSEngine component in the Management Server before 8.1.0.88, and the client before 1.6.450, in CA Host-Based Intrusion Prevention System HIPS 8.1, as used in CA Internet Security Suite ISS 2010, allows remote attacker...
CA HIPS kmxIds.sys驱动拒绝服务漏洞
CVECAN ID: CVE-2009-2740 CA HIPS集成了防火墙、入侵检测、入侵保护、操作系统安全和应用控制等功能,提供集中的主动安全防护。 CA HIPS的kmxIds.sys驱动没有正确地处理畸形报文,远程攻击者可以通过发送恶意报文导致内核崩溃。 Computer Associates HIPS 8.1 厂商补丁: Computer Associates ------------------- 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Design/Logic Flaw
kmxIds.sys before 7.3.1.18 in CA Host-Based Intrusion Prevention System HIPS 8.1 allows remote attackers to cause a denial of service system crash via a malformed packet...
CVE-2009-2740
CA HIPS kmxIds.sys (driver) in CA Host-Based Intrusion Prevention System 8.1 is vulnerable to a DoS via malformed network packets that trigger a kernel crash. Root cause: kmxIds.sys does not properly handle certain boundary conditions during packet parsing, allowing remote attackers to crash the ...