Vulnerabilities > CVE-2008-3174 - Remote Denial of Service vulnerability in Computer Associates products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
Unspecified vulnerability in the kmxfw.sys driver in CA Host-Based Intrusion Prevention System (HIPS) r8, as used in CA Internet Security Suite and Personal Firewall, allows remote attackers to cause a denial of service via unknown vectors, related to "insufficient validation."
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 5 |
Nessus
NASL family | Windows |
NASL id | CA_HIPS_KMXFW_SYS_MULTIPLE_VULN.NASL |
description | The |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 33901 |
published | 2008-08-16 |
reporter | This script is Copyright (C) 2008-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/33901 |
title | CA HIPS Kmxfw.sys Driver Multiple Remote Vulnerabilities |
code |
|
Seebug
bulletinFamily | exploit |
description | BUGTRAQ ID: 30651 CVE ID:CVE-2008-3174 CVE-2008-2926 CNCVE ID:CNCVE-20083174 CNCVE-20082926 CA HIPS包含漏洞允许本地攻击者导致系统崩溃或任意代码执行。漏洞是由于kmxfw.sys驱动不充分验证IOCTL请求引起的,攻击者发送IOCTL请求可导致系统崩溃或执行任意代码。 另外kmxfw.sys驱动不充分的验证可导致应用程序崩溃,造成拒绝服务攻击。 目前没有详细漏洞细节提供。 Computer Associates Personal Firewall 2008 Computer Associates Personal Firewall 2007 Computer Associates Internet Security Suite 2008 0 Computer Associates Internet Security Suite 2007 0 Computer Associates Host-Based Intrusion Prevention System r8 可参考如下供应商提供的补丁: Computer Associates Host-Based Intrusion Prevention System r8 Computer Associates RO00535.CAZ <a href=FTP://ftp.ca.com/CAproducts/unicenter/CAHIPS/nt/0703/RO00535.CAZ target=_blank>FTP://ftp.ca.com/CAproducts/unicenter/CAHIPS/nt/0703/RO00535.CAZ</a> |
id | SSV:3843 |
last seen | 2017-11-19 |
modified | 2008-08-14 |
published | 2008-08-14 |
reporter | Root |
title | Computer Associates 'kmxfw.sys'本地代码执行和远程拒绝服务漏洞 |
References
- http://secunia.com/advisories/31434
- http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36560
- http://www.securityfocus.com/archive/1/495397/100/0/threaded
- http://www.securityfocus.com/bid/30651
- http://www.securitytracker.com/id?1020661
- http://www.securitytracker.com/id?1020662
- http://www.securitytracker.com/id?1020663
- http://www.vupen.com/english/advisories/2008/2339
- https://exchange.xforce.ibmcloud.com/vulnerabilities/44393