2 matches found
CVE-2010-5156
CVE-2010-5156 concerns CA Internet Security Suite Plus 2010, version 6.0.0.272 on Windows XP. A race condition allows local attackers to bypass kernel‑mode hook handlers and run code that could evade signature‑based detection, via user‑space memory changes during hook‑handler execution (KHOBE/arg...
CVE-2011-1036
CVE-2011-1036 affects CA HIPS and CA ISS where the XMLSecDB ActiveX control (XMLSecDB in HIPSEngine) can be exploited via SetXml/Save to write an arbitrary file on a target host, enabling remote code execution. Affected: HIPS Management Server <8.1.0.88 and clients