The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Computer Associates Antivirus

Antivirus: bypassing SSDT Hooking
When an antivirus redirects the SSDT to detect viruses, a local attacker can use an atomicity error, in order to bypass this protection...
CVE-2010-5151, CVE-2010-5152, CVE-2010-5154, CVE-2010-5156, CVE-2010-5161, CVE-2010-5163, CVE-2010-5166, CVE-2010-5167, CVE-2010-5168, CVE-2010-5171, CVE-2010-5172, CVE-2010-5177, CVE-2010-5179, VIGILANCE-VUL-9633
CA Anti-Virus: code execution via arclib
An attacker can create a malformed RAR archive, which corrupts the memory, in order to stop the Anti-Virus, or to execute code...
BID-36653, CA20091008-01, CERTA-2009-AVI-431, CVE-2009-3587, CVE-2009-3588, G-SEC 46-2009, VIGILANCE-VUL-9080
CA Anti-Virus: bypassing arclib
An attacker can create a malformed archive containing a virus which is not detected by the antivirus...
BID-33464, CA20090126-01, CERTA-2009-AVI-033, CVE-2009-0042, VIGILANCE-VUL-8426
CA Alert Notification Server: code execution
An authenticated attacker can use overflows of the CA Alert Notification Server service in order to elevate his privileges...
BID-28605, CERTA-2008-AVI-184, CVE-2007-4620, VIGILANCE-VUL-7734
Computer Associates AV: denial of service via CHM
An attacker can create a malicious CHM file generating an infinite loop in the antivirus...
BID-25049, CAID 35525, CAID 35526, CVE-2007-3875, n.runs-SA-2007.024, VIGILANCE-VUL-7036
CA AV eTrust: buffer overflows of Alert service
Several buffer overflows affect Computer Associates products using the Alert service...
CAID 35515, CERTA-2007-AVI-315, CVE-2007-3825, VIGILANCE-VUL-7024
CA Anti-Virus, eTrust: buffer overflows of CAB
An attacker can create a malicious CAB archive in order to generate two overflows in Computer Associates antiviruses...
BID-24330, BID-24331, CERTA-2007-AVI-252, CVE-2007-2863, CVE-2007-2864, VIGILANCE-VUL-6885, VU#105105, VU#739409, ZDI-07-034, ZDI-07-035
CA Anti-Virus: several buffer overflows
A local or remote attacker can exploit several buffer overflows in antiviruses products of Computer Associates...
BID-23906, CAID 35330, CAID 35331, CERTA-2007-AVI-217, CVE-2007-2522, CVE-2007-2523, VIGILANCE-VUL-6812, VU#680616, VU#788416, ZDI-07-028
CA Anti-Virus: denial of service of vetfddnt.sys and vetmonnt.sys
A local attacker can send malicious data to vetfddnt.sys and vetmonnt.sys drivers in order to stop the antivirus...
BID-21593, CAID 34870, CVE-2006-6496, VIGILANCE-VUL-6402
Antivirus: infinite loop via a RAR archive
An attacker can create a malicious RAR archive in order to generate an infinite loop in some antivirus...
7609, BID-21509, CAID 35525, CAID 35526, CVE-2006-5645, CVE-2006-6458, CVE-2007-5645-ERROR, iDefense Security Advisory 12.08.06, VIGILANCE-VUL-6384
Our database contains other pages. You can request a free trial to read them.