[CLOSE] OSVDB ID : 32722 - Disclosed: 2007-03-08

Description:

CA eTrust Admin contains a flaw that may allow a malicious user to bypass authentication and gain privileges on the system. The issue is due to an unspecified error in the GINA password reset interface. This flaw may lead to unauthorized access resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 4865 - Disclosed: 2002-11-18

Description:

eTrust Antivirus may allow a local attacker to gain elevated privileges. The issue is due to the program not properly checking command line input. If an attacker supplies a specially crafted command line argument, they may be able to trick it into running an arbitrary program with SYSTEM privilegs.

[CLOSE] OSVDB ID : 3963 - Disclosed: 2004-02-13

Description:

eTrust Antivirus contains a flaw that may allow a remote attacker to bypass antivirus scans and infect a user. The issue is due to eTrust AV not properly scanning .zip files with password protected files. If an attacker created a specially crafted .zip file to send to a user, it may bypass detection and possibly infect the target.

[CLOSE] OSVDB ID : 50768 - Disclosed: 2008-12-09

Description:

(Description Provided by CVE) : CA eTrust Antivirus 31.6.6086, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass detection of malware in an HTML document by placing an MZ header (aka "EXE info") at the beginning, and modifying the filename to have (1) no extension, (2) a .txt extension, or (3) a .jpg extension, as demonstrated by a document containing a CVE-2006-5745 exploit.

[CLOSE] OSVDB ID : 27786 - Disclosed: 2006-08-03

Description:

(Description Provided by CVE) : Unspecified vulnerability in CA eTrust Antivirus WebScan before 1.1.0.1048 has unknown impact and remote attackers related to "improper processing of outdated WebScan components."

[CLOSE] OSVDB ID : 27785 - Disclosed: 2006-08-03

Description:

(Description Provided by CVE) : Unspecified vulnerability in CA eTrust Antivirus WebScan before 1.1.0.1048 allows remote attackers to install arbitrary files.

[CLOSE] OSVDB ID : 27787 - Disclosed: 2006-08-03

Description:

(Description Provided by CVE) : Unspecified vulnerability in CA eTrust Antivirus WebScan allows remote attackers to execute arbitrary code due to "improper bounds checking when processing certain user input."

[CLOSE] OSVDB ID : 8059 - Disclosed: 2004-07-19

Description:

Unknown / Incomplete

[CLOSE] OSVDB ID : 11979 - Disclosed: 2004-11-20

Description:

eTrust Antivirus contains a flaw that may allow a malicious user to bypass the password protection mechanism. The issue is caused by the displayed password in the GUI using star symbols being the actual password. It is possible that the flaw may allow the recovery of the actual password resulting in a loss of confidentiality.

[CLOSE] OSVDB ID : 12407 - Disclosed: 2004-12-15

Description:

(Description Provided by CVE) : Computer Associates eTrust EZ Antivirus 7.0.0 to 7.0.4, including 7.0.1.4, installs its files with insecure permissions (ACLs), which allows local users to gain privileges by replacing critical programs with malicious ones, as demonstrated using VetMsg.exe.

[CLOSE] OSVDB ID : 37698 - Disclosed: 2007-07-24

Description:

CA eTrust Intrusion Detection contains a flaw that allows a malicious user to execute code in the context of the user. The issue is triggered when the caller.dll ActiveX control is scripted by a malicious website. It is possible that the flaw may allow arbitrary code execution resulting in a loss of integrity.

[CLOSE] OSVDB ID : 15273 - Disclosed: 2005-04-06

Description:

(Description Provided by CVE) : Computer Associates (CA) eTrust Intrusion Detection 3.0 allows remote attackers to cause a denial of service via large size values that are not properly validated before calling the CPImportKey function in the Crypto API.

[CLOSE] OSVDB ID : 4866 - Disclosed: 2000-06-07

Description:

eTrust contains a flaw that may lead to an unauthorized password exposure. It is possible to gain access to plaintext passwords by accessing a specific registry key and decoding the encrypted passwords, which may lead to a loss of integrity.

[CLOSE] OSVDB ID : 32290 - Disclosed: 2007-02-27

Description:

CA eTrust Intrusion Detection contain a flaw that may allow a remote denial of service. The issue is due to the application failing to properly validate key length values during authentication and is triggered when a remote attacker sends a specially crafted packet containing a long key length value to the remote administration port (9191/TCP). This causes a heap-based buffer overflow in SW3eng.exe in the eID Engine, resulting in loss of availability for the service.

[CLOSE] OSVDB ID : 43482 - Disclosed: 2007-10-10

Description:

(Description Provided by CVE) : The web console in CA (formerly Computer Associates) eTrust ITM (Threat Manager) 8.1 allows remote attackers to redirect users to arbitrary web sites via a crafted HTTP URL on port 6689.

[CLOSE] OSVDB ID : 43487 - Disclosed: 2007-10-10

Description:

(Description Provided by CVE) : CA (formerly Computer Associates) eTrust ITM (Threat Manager) 8.1 stores sensitive user information in log files with predictable names, which allows remote attackers to obtain this information via unspecified vectors.

[CLOSE] OSVDB ID : 8058 - Disclosed: 2004-07-19

Description:

CA eTrust Common Services and Security Command Center contain a flaw that may allow a remote denial of service. The issue is triggered when a user sends a specialy crafted URL to the server, and will result in loss of availability for the portal service.

[CLOSE] OSVDB ID : 60862 - Disclosed: 2009-11-02

Description:

(Description Provided by CVE) : Stack-based buffer overflow in the PestPatrol ActiveX control (ppctl.dll) 5.6.7.9 in CA eTrust PestPatrol allows remote attackers to execute arbitrary code via a long argument to the Initialize method.

[CLOSE] OSVDB ID : 40269 - Disclosed: 2007-11-07

Description:

CA eTrust SiteMinder contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate SMAUTHREASON parameters upon submission to the 'smpwservices.fcc' script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity.

[CLOSE] OSVDB ID : 17810 - Disclosed: 2005-07-08

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in Computer Associates (CA) eTrust SiteMinder 5.5, when the "CSSChecking" parameter is set to "NO," allows remote attackers to inject arbitrary web script or HTML via the (1) PASSWORD or (2) BUFFER parameters to smpwservicescgi.exe, (3) the TARGET parameter to login.fcc, and possibly other vectors.

[CLOSE] OSVDB ID : 17809 - Disclosed: 2005-07-08

Description:

CA eTrust SiteMinder contains a flaw that allows a remote cross-site scripting (XSS) attack. This flaw exists because the application does not validate the 'PASSWORD' parameter, when the 'CSSChecking' parameter is set to "NO", upon submission to the smpwservicescgi.exe script. This may allow a user to create a specially crafted URL that would execute arbitrary script code in a user's browser within the trust relationship between their browser and the server.

[CLOSE] OSVDB ID : 40109 - Disclosed: 2007-12-05

Description:

(Description Provided by CVE) : Multiple cross-site scripting (XSS) vulnerabilities in CA (formerly Computer Associates) eTrust Threat Management Console allow remote attackers to inject arbitrary web script or HTML via the IP Address field and other unspecified fields.

[CLOSE] OSVDB ID : 74119 - Disclosed: 2011-07-20

Description:

(Description Provided by CVE) : Icihttp.exe in CA Gateway Security for HTTP, as used in CA Gateway Security 8.1 before 8.1.0.69 and CA Total Defense r12, does not properly parse URLs, which allows remote attackers to execute arbitrary code or cause a denial of service (heap memory corruption and daemon crash) via a malformed request.

[CLOSE] OSVDB ID : 57168 - Disclosed: 2009-08-18

Description:

(Description Provided by CVE) : kmxIds.sys before 7.3.1.18 in CA Host-Based Intrusion Prevention System (HIPS) 8.1 allows remote attackers to cause a denial of service (system crash) via a malformed packet.

[CLOSE] OSVDB ID : 37998 - Disclosed: 2007-10-18

Description:

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in the Server component in CA Host-Based Intrusion Prevention System (HIPS) before 8.0.0.93 allows remote attackers to inject arbitrary web script or HTML via requests that are written to logs for later display in the log viewer.

[CLOSE] OSVDB ID : 19920 - Disclosed: 2005-10-10

Description:

A remote overflow exists in Computer Associates iGateway. The application fails to perform proper bounds checking resulting in a buffer overflow. With a specially crafted HTTP GET request, a remote attacker can cause arbitrary code execution with SYSTEM privileges resulting in a loss of integrity.

[CLOSE] OSVDB ID : 22688 - Disclosed: 2006-01-23

Description:

A remote overflow exists in iGateway. The web server fails to properly validate the Content-Length header, resulting in a buffer overflow. With a specially crafted request, an attacker can cause arbitrary code to be executed, resulting in a loss of integrity and/or availability.

[CLOSE] OSVDB ID : 69518 - Disclosed: 2010-11-28

Description:

CA Internet Security Suite Plus contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue is triggered when a pool corruption vulnerability in the handling of IOTCL 0x88000080 in the KmxSbx.sys kernel driver is exploited to cause a buffer overflow, allowing a local attacker to execute arbitrary code with elevated privileges.

[CLOSE] OSVDB ID : 45679 - Disclosed: 2008-05-28

Description:

(Description Provided by CVE) : Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information.

[CLOSE] OSVDB ID : 57228 - Disclosed: 2009-08-18

Description:

(Description Provided by CVE) : vetmonnt.sys in CA Internet Security Suite r3, vetmonnt.sys before 9.0.0.184 in Internet Security Suite r4, and vetmonnt.sys before 10.0.0.217 in Internet Security Suite r5 do not properly verify IOCTL calls, which allows local users to cause a denial of service (system crash) via a crafted call.