OSVDB ID: 27786

Title: CA eTrust Antivirus WebScan ActiveX Control Crafted File Protection Weakness

Info

Disclosure

Aug 03, 2006

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

Description

Classification

Location: Remote / Network Access, Context Dependent
Attack Type: Input Manipulation
OSVDB: Web Related, Security Software

Solution

Upgrade to version 1.1.0.1048 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Unknown or Incomplete

References

CVE ID: 2006-3977 (see also: NVD)
Secunia Advisory ID: 21320
Related OSVDB ID: 27785 27787
Keyword: CAID 34509
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2006-08/0126.html
http://archives.neohapsis.com/archives/fulldisclosure/2006-08/0182.html
Other Advisory URL: http://www.tippingpoint.com/security/advisories/TSRT-06-05.html
Vendor URL: http://www3.ca.com/securityadvisor/virusinfo/scan.aspx
Vendor Specific Advisory URL: http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34509

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/27786