cvelistv5 - CVE-2007-2523

CVE-2007-2523 (GCVE-0-2007-2523)

Vulnerability from cvelistv5 – Published: 2007-05-11 03:55 – Updated: 2024-08-07 13:42

Summary

CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

Tags

	http://supportconnectw.ca.com/public/antivirus/in…	x_refsource_CONFIRM
	http://www.securitytracker.com/id?1018043	vdb-entryx_refsource_SECTRACK
	http://blog.48bits.com/?p=103	x_refsource_MISC
	http://www.vupen.com/english/advisories/2007/1750	vdb-entryx_refsource_VUPEN
	http://www.securityfocus.com/bid/23906	vdb-entryx_refsource_BID
	http://www.kb.cert.org/vuls/id/788416	third-party-advisoryx_refsource_CERT-VN
	http://www.osvdb.org/34586	vdb-entryx_refsource_OSVDB
	http://secunia.com/advisories/25202	third-party-advisoryx_refsource_SECUNIA
	http://www.securityfocus.com/archive/1/468306/100…	mailing-listx_refsource_BUGTRAQ
	http://labs.idefense.com/intelligence/vulnerabili…	third-party-advisoryx_refsource_IDEFENSE
	http://lists.grok.org.uk/pipermail/full-disclosur…	mailing-listx_refsource_FULLDISC

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T13:42:33.371Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp"
          },
          {
            "name": "1018043",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id?1018043"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://blog.48bits.com/?p=103"
          },
          {
            "name": "ADV-2007-1750",
            "tags": [
              "vdb-entry",
              "x_refsource_VUPEN",
              "x_transferred"
            ],
            "url": "http://www.vupen.com/english/advisories/2007/1750"
          },
          {
            "name": "23906",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/23906"
          },
          {
            "name": "VU#788416",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/788416"
          },
          {
            "name": "34586",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/34586"
          },
          {
            "name": "25202",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/25202"
          },
          {
            "name": "20070511 Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/archive/1/468306/100/0/threaded"
          },
          {
            "name": "20070509 Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability",
            "tags": [
              "third-party-advisory",
              "x_refsource_IDEFENSE",
              "x_transferred"
            ],
            "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530"
          },
          {
            "name": "20050711 [CAID 35330, 35331]: CA Anti-Virus, CA Threat Manager, and CA Anti-Spyware Console Login and File Mapping Vulnerabilities",
            "tags": [
              "mailing-list",
              "x_refsource_FULLDISC",
              "x_transferred"
            ],
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-05-08T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2018-10-16T14:57:01",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp"
        },
        {
          "name": "1018043",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id?1018043"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://blog.48bits.com/?p=103"
        },
        {
          "name": "ADV-2007-1750",
          "tags": [
            "vdb-entry",
            "x_refsource_VUPEN"
          ],
          "url": "http://www.vupen.com/english/advisories/2007/1750"
        },
        {
          "name": "23906",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/23906"
        },
        {
          "name": "VU#788416",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/788416"
        },
        {
          "name": "34586",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/34586"
        },
        {
          "name": "25202",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/25202"
        },
        {
          "name": "20070511 Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://www.securityfocus.com/archive/1/468306/100/0/threaded"
        },
        {
          "name": "20070509 Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability",
          "tags": [
            "third-party-advisory",
            "x_refsource_IDEFENSE"
          ],
          "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530"
        },
        {
          "name": "20050711 [CAID 35330, 35331]: CA Anti-Virus, CA Threat Manager, and CA Anti-Spyware Console Login and File Mapping Vulnerabilities",
          "tags": [
            "mailing-list",
            "x_refsource_FULLDISC"
          ],
          "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-2523",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp",
              "refsource": "CONFIRM",
              "url": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp"
            },
            {
              "name": "1018043",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id?1018043"
            },
            {
              "name": "http://blog.48bits.com/?p=103",
              "refsource": "MISC",
              "url": "http://blog.48bits.com/?p=103"
            },
            {
              "name": "ADV-2007-1750",
              "refsource": "VUPEN",
              "url": "http://www.vupen.com/english/advisories/2007/1750"
            },
            {
              "name": "23906",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/23906"
            },
            {
              "name": "VU#788416",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/788416"
            },
            {
              "name": "34586",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/34586"
            },
            {
              "name": "25202",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/25202"
            },
            {
              "name": "20070511 Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability",
              "refsource": "BUGTRAQ",
              "url": "http://www.securityfocus.com/archive/1/468306/100/0/threaded"
            },
            {
              "name": "20070509 Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability",
              "refsource": "IDEFENSE",
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530"
            },
            {
              "name": "20050711 [CAID 35330, 35331]: CA Anti-Virus, CA Threat Manager, and CA Anti-Spyware Console Login and File Mapping Vulnerabilities",
              "refsource": "FULLDISC",
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-2523",
    "datePublished": "2007-05-11T03:55:00",
    "dateReserved": "2007-05-08T00:00:00",
    "dateUpdated": "2024-08-07T13:42:33.371Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:broadcom:integrated_threat_management:8.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C167CC34-95AE-45CD-A1CE-64FF738DE25E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:ca:anti-virus_for_the_enterprise:8:*:enterprise:*:*:*:*:*\", \"matchCriteriaId\": \"0662407D-B0D7-4C4A-9F11-D438ED0A186D\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0.\"}, {\"lang\": \"es\", \"value\": \"El Anti-Virus CA  para la Enterprise r8 y el Threat Manager r8 antes del 20070510 usa permisos d\\u00e9biles (seguridad de descriptor NULL) para el fichero de mapeo compartido del Task Service, lo cual permite a usuarios locales modificar este mapeo y obtener privilegios mediante el disparo de un desbordamiento de b\\u00fafer basado en pila en el InoCore.dll en versiones anteriores a 8.0.448.0.\"}]",
      "evaluatorSolution": "The Computer Associates Integrated Threat Manager product is only vulnerable if it is release 8.0 before 2007-05-10.",
      "id": "CVE-2007-2523",
      "lastModified": "2024-11-21T00:30:59.287",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:L/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 7.2, \"accessVector\": \"LOCAL\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 3.9, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": true, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2007-05-11T04:20:00.000",
      "references": "[{\"url\": \"http://blog.48bits.com/?p=103\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/25202\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/788416\", \"source\": \"cve@mitre.org\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.osvdb.org/34586\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/archive/1/468306/100/0/threaded\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/23906\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securitytracker.com/id?1018043\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/1750\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://blog.48bits.com/?p=103\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/25202\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/788416\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"US Government Resource\"]}, {\"url\": \"http://www.osvdb.org/34586\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/archive/1/468306/100/0/threaded\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/23906\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securitytracker.com/id?1018043\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.vupen.com/english/advisories/2007/1750\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2007-2523\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2007-05-11T04:20:00.000\",\"lastModified\":\"2025-04-09T00:30:58.490\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0.\"},{\"lang\":\"es\",\"value\":\"El Anti-Virus CA  para la Enterprise r8 y el Threat Manager r8 antes del 20070510 usa permisos d\u00e9biles (seguridad de descriptor NULL) para el fichero de mapeo compartido del Task Service, lo cual permite a usuarios locales modificar este mapeo y obtener privilegios mediante el disparo de un desbordamiento de b\u00fafer basado en pila en el InoCore.dll en versiones anteriores a 8.0.448.0.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":true,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:broadcom:integrated_threat_management:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C167CC34-95AE-45CD-A1CE-64FF738DE25E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:ca:anti-virus_for_the_enterprise:8:*:enterprise:*:*:*:*:*\",\"matchCriteriaId\":\"0662407D-B0D7-4C4A-9F11-D438ED0A186D\"}]}]}],\"references\":[{\"url\":\"http://blog.48bits.com/?p=103\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/25202\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/788416\",\"source\":\"cve@mitre.org\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/34586\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/archive/1/468306/100/0/threaded\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/23906\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securitytracker.com/id?1018043\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/1750\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://blog.48bits.com/?p=103\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/25202\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/788416\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/34586\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/archive/1/468306/100/0/threaded\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/23906\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securitytracker.com/id?1018043\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.vupen.com/english/advisories/2007/1750\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}],\"evaluatorSolution\":\"The Computer Associates Integrated Threat Manager product is only vulnerable if it is release 8.0 before 2007-05-10.\"}}"
  }
}

CERTA-2007-AVI-217

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été découvertes dans certains produits de la société CA. Ces vulnérabilités permettent à une utilisateur malintentionné de conduire des attaques par déni de service ou d'exécuter du code arbitraire à distance.

Description

Deux vulnérabilités ont été découvertes dans certains produits de la société CA :

La première vulnérabilité résulte d'un débordement de tampon au niveau du traitement des identifiants. L'exploitation de cette vulnérabilité permet d'exécuter des commandes arbitraires à distance via le port 12168/TCP.
La seconde faille est due à un débordement de tampon présent au niveau de la bibliothèque InoCore.dll. Cette vulnérabilité peut être exploitée localement afin d'élever ses privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	CA Anti-Spyware (eTrust PestPatrol) version r8 et versions antérieures.
N/A	N/A	CA Threat Manager (eTrust Integrated Threat Management) version r8 et versions antérieures ;
N/A	N/A	CA Anti-Virus for the Enterprise (eTrust Antivirus) version r8 et versions antérieures ;

References

Title

Publication Time

Tags

Bulletin de sécurité CA du 10 mai 2007	None	vendor-advisory
Bulletin de vulnérabilité de CA du 10 mai 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "CA Anti-Spyware (eTrust PestPatrol) version r8 et versions ant\u00e9rieures.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "CA Threat Manager (eTrust Integrated Threat Management) version r8 et versions ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "CA Anti-Virus for the Enterprise (eTrust Antivirus) version r8 et versions ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nDeux vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans certains produits de la\nsoci\u00e9t\u00e9 CA :\n\n-   La premi\u00e8re vuln\u00e9rabilit\u00e9 r\u00e9sulte d\u0027un d\u00e9bordement de tampon au\n    niveau du traitement des identifiants. L\u0027exploitation de cette\n    vuln\u00e9rabilit\u00e9 permet d\u0027ex\u00e9cuter des commandes arbitraires \u00e0 distance\n    via le port 12168/TCP.\n-   La seconde faille est due \u00e0 un d\u00e9bordement de tampon pr\u00e9sent au\n    niveau de la biblioth\u00e8que InoCore.dll. Cette vuln\u00e9rabilit\u00e9 peut \u00eatre\n    exploit\u00e9e localement afin d\u0027\u00e9lever ses privil\u00e8ges.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-2523",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-2523"
    },
    {
      "name": "CVE-2007-2522",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-2522"
    }
  ],
  "links": [
    {
      "title": "Bulletin de vuln\u00e9rabilit\u00e9 de CA du 10 mai 2007 :",
      "url": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp"
    }
  ],
  "reference": "CERTA-2007-AVI-217",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-05-11T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans certains produits\nde la soci\u00e9t\u00e9 CA. Ces vuln\u00e9rabilit\u00e9s permettent \u00e0 une utilisateur\nmalintentionn\u00e9 de conduire des attaques par d\u00e9ni de service ou\nd\u0027ex\u00e9cuter du code arbitraire \u00e0 distance.\n",
  "title": "Multiples Vuln\u00e9rabilit\u00e9s des produits CA",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 CA du 10 mai 2007",
      "url": null
    }
  ]
}

CERTA-2007-AVI-217

Vulnerability from certfr_avis - Published: - Updated:

Description

Deux vulnérabilités ont été découvertes dans certains produits de la société CA :

La première vulnérabilité résulte d'un débordement de tampon au niveau du traitement des identifiants. L'exploitation de cette vulnérabilité permet d'exécuter des commandes arbitraires à distance via le port 12168/TCP.
La seconde faille est due à un débordement de tampon présent au niveau de la bibliothèque InoCore.dll. Cette vulnérabilité peut être exploitée localement afin d'élever ses privilèges.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
N/A	N/A	CA Anti-Spyware (eTrust PestPatrol) version r8 et versions antérieures.
N/A	N/A	CA Threat Manager (eTrust Integrated Threat Management) version r8 et versions antérieures ;
N/A	N/A	CA Anti-Virus for the Enterprise (eTrust Antivirus) version r8 et versions antérieures ;

References

Title

Publication Time

Tags

Bulletin de sécurité CA du 10 mai 2007	None	vendor-advisory
Bulletin de vulnérabilité de CA du 10 mai 2007 :	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "CA Anti-Spyware (eTrust PestPatrol) version r8 et versions ant\u00e9rieures.",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "CA Threat Manager (eTrust Integrated Threat Management) version r8 et versions ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    },
    {
      "description": "CA Anti-Virus for the Enterprise (eTrust Antivirus) version r8 et versions ant\u00e9rieures ;",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "N/A",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Description\n\nDeux vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans certains produits de la\nsoci\u00e9t\u00e9 CA :\n\n-   La premi\u00e8re vuln\u00e9rabilit\u00e9 r\u00e9sulte d\u0027un d\u00e9bordement de tampon au\n    niveau du traitement des identifiants. L\u0027exploitation de cette\n    vuln\u00e9rabilit\u00e9 permet d\u0027ex\u00e9cuter des commandes arbitraires \u00e0 distance\n    via le port 12168/TCP.\n-   La seconde faille est due \u00e0 un d\u00e9bordement de tampon pr\u00e9sent au\n    niveau de la biblioth\u00e8que InoCore.dll. Cette vuln\u00e9rabilit\u00e9 peut \u00eatre\n    exploit\u00e9e localement afin d\u0027\u00e9lever ses privil\u00e8ges.\n\n## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2007-2523",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-2523"
    },
    {
      "name": "CVE-2007-2522",
      "url": "https://www.cve.org/CVERecord?id=CVE-2007-2522"
    }
  ],
  "links": [
    {
      "title": "Bulletin de vuln\u00e9rabilit\u00e9 de CA du 10 mai 2007 :",
      "url": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp"
    }
  ],
  "reference": "CERTA-2007-AVI-217",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2007-05-11T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans certains produits\nde la soci\u00e9t\u00e9 CA. Ces vuln\u00e9rabilit\u00e9s permettent \u00e0 une utilisateur\nmalintentionn\u00e9 de conduire des attaques par d\u00e9ni de service ou\nd\u0027ex\u00e9cuter du code arbitraire \u00e0 distance.\n",
  "title": "Multiples Vuln\u00e9rabilit\u00e9s des produits CA",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 CA du 10 mai 2007",
      "url": null
    }
  ]
}

GHSA-J5VW-526Q-M7H7

Vulnerability from github – Published: 2022-05-01 18:04 – Updated: 2022-05-01 18:04

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2007-2523"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2007-05-11T04:20:00Z",
    "severity": "HIGH"
  },
  "details": "CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0.",
  "id": "GHSA-j5vw-526q-m7h7",
  "modified": "2022-05-01T18:04:23Z",
  "published": "2022-05-01T18:04:23Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2007-2523"
    },
    {
      "type": "WEB",
      "url": "http://blog.48bits.com/?p=103"
    },
    {
      "type": "WEB",
      "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530"
    },
    {
      "type": "WEB",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html"
    },
    {
      "type": "WEB",
      "url": "http://secunia.com/advisories/25202"
    },
    {
      "type": "WEB",
      "url": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp"
    },
    {
      "type": "WEB",
      "url": "http://www.kb.cert.org/vuls/id/788416"
    },
    {
      "type": "WEB",
      "url": "http://www.osvdb.org/34586"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/archive/1/468306/100/0/threaded"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/23906"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id?1018043"
    },
    {
      "type": "WEB",
      "url": "http://www.vupen.com/english/advisories/2007/1750"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

GSD-2007-2523

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2007-2523

Aliases

CVE-2007-2523

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2007-2523",
    "description": "CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0.",
    "id": "GSD-2007-2523"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2007-2523"
      ],
      "details": "CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0.",
      "id": "GSD-2007-2523",
      "modified": "2023-12-13T01:21:38.049654Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2007-2523",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp",
            "refsource": "CONFIRM",
            "url": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp"
          },
          {
            "name": "1018043",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id?1018043"
          },
          {
            "name": "http://blog.48bits.com/?p=103",
            "refsource": "MISC",
            "url": "http://blog.48bits.com/?p=103"
          },
          {
            "name": "ADV-2007-1750",
            "refsource": "VUPEN",
            "url": "http://www.vupen.com/english/advisories/2007/1750"
          },
          {
            "name": "23906",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/23906"
          },
          {
            "name": "VU#788416",
            "refsource": "CERT-VN",
            "url": "http://www.kb.cert.org/vuls/id/788416"
          },
          {
            "name": "34586",
            "refsource": "OSVDB",
            "url": "http://www.osvdb.org/34586"
          },
          {
            "name": "25202",
            "refsource": "SECUNIA",
            "url": "http://secunia.com/advisories/25202"
          },
          {
            "name": "20070511 Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability",
            "refsource": "BUGTRAQ",
            "url": "http://www.securityfocus.com/archive/1/468306/100/0/threaded"
          },
          {
            "name": "20070509 Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability",
            "refsource": "IDEFENSE",
            "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530"
          },
          {
            "name": "20050711 [CAID 35330, 35331]: CA Anti-Virus, CA Threat Manager, and CA Anti-Spyware Console Login and File Mapping Vulnerabilities",
            "refsource": "FULLDISC",
            "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:broadcom:integrated_threat_management:8.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:ca:anti-virus_for_the_enterprise:8:*:enterprise:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-2523"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20070509 Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability",
              "refsource": "IDEFENSE",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530"
            },
            {
              "name": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp",
              "refsource": "CONFIRM",
              "tags": [
                "Patch"
              ],
              "url": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp"
            },
            {
              "name": "23906",
              "refsource": "BID",
              "tags": [],
              "url": "http://www.securityfocus.com/bid/23906"
            },
            {
              "name": "http://blog.48bits.com/?p=103",
              "refsource": "MISC",
              "tags": [],
              "url": "http://blog.48bits.com/?p=103"
            },
            {
              "name": "VU#788416",
              "refsource": "CERT-VN",
              "tags": [
                "US Government Resource"
              ],
              "url": "http://www.kb.cert.org/vuls/id/788416"
            },
            {
              "name": "1018043",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id?1018043"
            },
            {
              "name": "25202",
              "refsource": "SECUNIA",
              "tags": [],
              "url": "http://secunia.com/advisories/25202"
            },
            {
              "name": "20050711 [CAID 35330, 35331]: CA Anti-Virus, CA Threat Manager, and CA Anti-Spyware Console Login and File Mapping Vulnerabilities",
              "refsource": "FULLDISC",
              "tags": [],
              "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html"
            },
            {
              "name": "34586",
              "refsource": "OSVDB",
              "tags": [],
              "url": "http://www.osvdb.org/34586"
            },
            {
              "name": "ADV-2007-1750",
              "refsource": "VUPEN",
              "tags": [],
              "url": "http://www.vupen.com/english/advisories/2007/1750"
            },
            {
              "name": "20070511 Computer Associates eTrust InoTask.exe Antivirus Buffer Overflow Vulnerability",
              "refsource": "BUGTRAQ",
              "tags": [],
              "url": "http://www.securityfocus.com/archive/1/468306/100/0/threaded"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 10.0,
          "obtainAllPrivilege": true,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2021-04-09T17:04Z",
      "publishedDate": "2007-05-11T04:20Z"
    }
  }
}

FKIE_CVE-2007-2523

Vulnerability from fkie_nvd - Published: 2007-05-11 04:20 - Updated: 2025-04-09 00:30

Severity ?

Summary

References

URL	Tags
cve@mitre.org	http://blog.48bits.com/?p=103
cve@mitre.org	http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530	Vendor Advisory
cve@mitre.org	http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html
cve@mitre.org	http://secunia.com/advisories/25202
cve@mitre.org	http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp	Patch
cve@mitre.org	http://www.kb.cert.org/vuls/id/788416	US Government Resource
cve@mitre.org	http://www.osvdb.org/34586
cve@mitre.org	http://www.securityfocus.com/archive/1/468306/100/0/threaded
cve@mitre.org	http://www.securityfocus.com/bid/23906
cve@mitre.org	http://www.securitytracker.com/id?1018043
cve@mitre.org	http://www.vupen.com/english/advisories/2007/1750
af854a3a-2127-422b-91ae-364da2661108	http://blog.48bits.com/?p=103
af854a3a-2127-422b-91ae-364da2661108	http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html
af854a3a-2127-422b-91ae-364da2661108	http://secunia.com/advisories/25202
af854a3a-2127-422b-91ae-364da2661108	http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp	Patch
af854a3a-2127-422b-91ae-364da2661108	http://www.kb.cert.org/vuls/id/788416	US Government Resource
af854a3a-2127-422b-91ae-364da2661108	http://www.osvdb.org/34586
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/archive/1/468306/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/23906
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id?1018043
af854a3a-2127-422b-91ae-364da2661108	http://www.vupen.com/english/advisories/2007/1750

Impacted products

	Vendor	Product	Version
	broadcom	integrated_threat_management	8.0
	ca	anti-virus_for_the_enterprise	8

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:broadcom:integrated_threat_management:8.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "C167CC34-95AE-45CD-A1CE-64FF738DE25E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:ca:anti-virus_for_the_enterprise:8:*:enterprise:*:*:*:*:*",
              "matchCriteriaId": "0662407D-B0D7-4C4A-9F11-D438ED0A186D",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0."
    },
    {
      "lang": "es",
      "value": "El Anti-Virus CA  para la Enterprise r8 y el Threat Manager r8 antes del 20070510 usa permisos d\u00e9biles (seguridad de descriptor NULL) para el fichero de mapeo compartido del Task Service, lo cual permite a usuarios locales modificar este mapeo y obtener privilegios mediante el disparo de un desbordamiento de b\u00fafer basado en pila en el InoCore.dll en versiones anteriores a 8.0.448.0."
    }
  ],
  "evaluatorSolution": "The Computer Associates Integrated Threat Manager product is only vulnerable if it is release 8.0 before 2007-05-10.",
  "id": "CVE-2007-2523",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.2,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 10.0,
        "obtainAllPrivilege": true,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-05-11T04:20:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://blog.48bits.com/?p=103"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://secunia.com/advisories/25202"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/788416"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/34586"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/archive/1/468306/100/0/threaded"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/23906"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securitytracker.com/id?1018043"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.vupen.com/english/advisories/2007/1750"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://blog.48bits.com/?p=103"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=530"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://lists.grok.org.uk/pipermail/full-disclosure/2007-May/063275.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://secunia.com/advisories/25202"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "US Government Resource"
      ],
      "url": "http://www.kb.cert.org/vuls/id/788416"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/34586"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/archive/1/468306/100/0/threaded"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/23906"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id?1018043"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.vupen.com/english/advisories/2007/1750"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2007-2523 (GCVE-0-2007-2523)

CERTA-2007-AVI-217

Description

Solution

CERTA-2007-AVI-217

Description

Solution

GHSA-J5VW-526Q-M7H7

GSD-2007-2523

FKIE_CVE-2007-2523

Tags

Sightings

Nomenclature