The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of CA Anti-Virus: several buffer overflows

Synthesis of the vulnerability 

A local or remote attacker can exploit several buffer overflows in antiviruses products of Computer Associates.
Vulnerable systems: CA Antivirus, e-Trust Antivirus.
Severity of this threat: 3/4.
Number of vulnerabilities in this bulletin: 2.
Creation date: 11/05/2007.
Références of this weakness: BID-23906, CAID 35330, CAID 35331, CERTA-2007-AVI-217, CVE-2007-2522, CVE-2007-2523, VIGILANCE-VUL-6812, VU#680616, VU#788416, ZDI-07-028.

Description of the vulnerability 

An attacker can exploit two buffer overflows in antiviruses products of Computer Associates.

The InoWeb.exe web server listens on port 12168/tcp. User has to authenticate before accessing to service. However, login and password are stored in a fixed size array without check, which leads to an overflow. A remote attacker can therefore execute code. [severity:3/4; CERTA-2007-AVI-217, CVE-2007-2522, VU#680616, ZDI-07-028]

The task service InoTask.exe, linked to InoCore.dll, uses a shared file which can be edited by every local user. A local attacker can therefore write a long value in order to generate an overflow, then code execution with SYSTEM privileges. [severity:3/4; CVE-2007-2523, VU#788416]
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This security bulletin impacts software or systems such as CA Antivirus, e-Trust Antivirus.

Our Vigil@nce team determined that the severity of this cybersecurity announce is important.

The trust level is of type confirmed by a trusted third party, with an origin of intranet client.

This bulletin is about 2 vulnerabilities.

An attacker with a expert ability can exploit this vulnerability alert.

Solutions for this threat 

CA Anti-Virus: update 8th or May 2007.
An update is available since May 8th, 2007.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides an applications vulnerabilities patch. The Vigil@nce team tracks computer vulnerabilities impacting systems and applications.