mailing list archives
CAID 34325 - CA ITM, eAV, ePP scan job description field format string vulnerability
From: "Williams, James K" <James.Williams () ca com>
Date: Tue, 27 Jun 2006 15:18:52 -0400
Title: CAID 34325 - CA ITM, eAV, ePP scan job description field format
CA Vulnerability ID: 34325
CA Advisory Date: 2006-06-26
Discovered By: Deral Heiland (www.layereddefense.com)
Impact: Attackers can cause a denial of service condition or possibly
execute arbitrary code.
Summary: CA Integrated Threat Management, eTrust Antivirus, and eTrust
PestPatrol contain a vulnerability that can allow attackers to cause a
denial of service condition or possibly execute arbitrary code. The
vulnerability is due to improper processing of format strings in the
description field of a scan job. An attacker, who can create a scan job
containing format string directives, can potentially overwrite memory
to cause a crash or execute arbitrary code.
Mitigating Factors: None
Severity: CA has given this vulnerability a Medium risk rating.
CA Integrated Threat Management r8
eTrust Antivirus r8
eTrust PestPatrol Anti-spyware Corporate Edition r8
Status and Recommendation: This vulnerability is addressed in Content
Update build 432. Use the content update mechanism to install this
References: (URLs may wrap)
Client GUI Vulnerability Content Update - build 432
CAID Advisory link:
Changelog for this advisory:
v1.0 - Initial Release
Customers who require additional information should contact CA
Technical Support at http://supportconnect.ca.com.
For technical questions or comments related to this advisory,
please send email to vuln () ca com, or contact me directly.
If you discover a vulnerability in CA products, please report
your findings to vuln () ca com, or utilize our "Submit a
Ken Williams ; 0xE2941985
Director, CA Vulnerability Research
CA, One Computer Associates Plaza. Islandia, NY 11749
Legal Notice http://www3.ca.com/legal/
Copyright (c) 2006 CA. All rights reserved.
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
- CAID 34325 - CA ITM, eAV, ePP scan job description field format string vulnerability Williams, James K (Jun 27)