Vulnerabilities > CVE-2007-2523

047910
CVSS 7.2 - HIGH
Attack vector
LOCAL
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
local
low complexity
broadcom
ca
nessus
exploit available
NVD
Published: 2007-05-11
Updated: 2021-04-09

Summary

CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0. The Computer Associates Integrated Threat Manager product is only vulnerable if it is release 8.0 before 2007-05-10.

Vulnerable Configurations

Part Description Count
Application
Broadcom
1
Application
Ca
1

Exploit-Db

descriptionCA Multiple Products Console Server and InoCore.dll Remote Code Execution Vulnerabilities. CVE-2007-2523. Remote exploit for windows platform
idEDB-ID:30019
last seen2016-02-03
modified2007-05-09
published2007-05-09
reporterbinagres
sourcehttps://www.exploit-db.com/download/30019/
titleCA Multiple Products Console Server and InoCore.dll - Remote Code Execution Vulnerabilities

Nessus

NASL familyWindows
NASL idCA_INOTASK_OVERFLOW.NASL
descriptionThe version of CA Anti-Virus for the Enterprise / Threat Manager installed on the remote host is affected by a stack-based buffer overflow involving its task service, InoTask.exe. By supplying a long path to the file job
last seen2020-06-01
modified2020-06-02
plugin id25218
published2007-05-16
reporterThis script is Copyright (C) 2007-2018 Tenable Network Security, Inc.
sourcehttps://www.tenable.com/plugins/nessus/25218
titleCA Multiple Products InoCore.dll File Mapping Manipulation Local Overflow

Saint

bid23906
descriptionCA Console Server username buffer overflow
idmisc_av_caetrustitm
osvdb34585
titleca_console_login
typeremote

References