Vulnerability Note VU#788416
Computer Associates AntiVirus InoTask buffer overflow vulnerability
Overview
Computer Associates AntiVirus for the Enterprise and Threat Manager products contain a buffer overflow vulnerability that may be exploited by local users to execute code with elevated privileges.
Description
Computer Associates eTrust Antivirus v8 includes a component called InoTask. InoTask is used to schedule and lauch tasks and programs. The InoTask process contains a buffer overflow vulnerability. By sending malformed data to the InoTask process, a user may be able to execute code with elevated privileges. Note that publicly available exploit code exists for this vulnerability. |
Impact
A local user may be able to execute code with system privileges. |
Solution
Upgrade |
Systems Affected (Learn More)
Vendor | Status | Date Notified | Date Updated |
---|---|---|---|
Computer Associates | Affected | - | 11 May 2007 |
CVSS Metrics (Learn More)
Group | Score | Vector |
---|---|---|
Base | N/A | N/A |
Temporal | N/A | N/A |
Environmental | N/A | N/A |
References
- http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530
- http://secunia.com/advisories/25202/
- http://www.48bits.com/exploits/etrust.c
Credit
Thanks to iDefense for information that was used in this report. iDefense credits binagres for discovering this vulnerability.
This document was written by Ryan Giobbi.
Other Information
- CVE IDs: CVE-2007-2523
- Date Public: 11 May 2007
- Date First Published: 11 May 2007
- Date Last Updated: 20 Jun 2007
- Severity Metric: 0.29
- Document Revision: 15
Feedback
If you have feedback, comments, or additional information about this vulnerability, please send us email.