Computer Associates Multiple Products Drivers Multiple Local Privilege Escalation Vulenrabilities
BID:21140
Info
Computer Associates Multiple Products Drivers Multiple Local Privilege Escalation Vulenrabilities
| Bugtraq ID: | 21140 |
| Class: | Design Error |
| CVE: |
CVE-2006-6952 |
| Remote: | No |
| Local: | Yes |
| Published: | Nov 16 2006 12:00AM |
| Updated: | Jan 25 2007 10:29PM |
| Credit: | Rubén Santamarta is credited with the discovery of these issues. |
| Vulnerable: |
Computer Associates Personal Firewall 9.0 Computer Associates Internet Security Suite 2007 3.0 Computer Associates Internet Security Suite 2007 0 |
| Not Vulnerable: | |
Discussion
Computer Associates Multiple Products Drivers Multiple Local Privilege Escalation Vulenrabilities
Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities.
An attacker can leverage these issues to execute arbitrary code with SYSTEM-level privileges. This could result in the complete compromise of vulnerable computers.
These isses affect CA Personal Firewall 2007 (v9.0) Engine version 1.0.173 and prior and CA Internet Security Suite 2007 version 3.0 with CA Personal Firewall 2007 version 9.0 Engine version 1.0.173 and prior.
Multiple Computer Associates security-related products are prone to multiple local privilege-escalation vulnerabilities.
An attacker can leverage these issues to execute arbitrary code with SYSTEM-level privileges. This could result in the complete compromise of vulnerable computers.
These isses affect CA Personal Firewall 2007 (v9.0) Engine version 1.0.173 and prior and CA Internet Security Suite 2007 version 3.0 with CA Personal Firewall 2007 version 9.0 Engine version 1.0.173 and prior.
Exploit / POC
Computer Associates Multiple Products Drivers Multiple Local Privilege Escalation Vulenrabilities
The following example exploits are available:
The following example exploits are available:
Solution / Fix
Computer Associates Multiple Products Drivers Multiple Local Privilege Escalation Vulenrabilities
Solution:
The vendor released updates to address these issues. These updates can be obtain through the automatic update feature provided by the applications.
Solution:
The vendor released updates to address these issues. These updates can be obtain through the automatic update feature provided by the applications.
References
Computer Associates Multiple Products Drivers Multiple Local Privilege Escalation Vulenrabilities
References:
References:
- COMPUTER ASSOCIATES HIPS DRIVERS MULTIPLE PRIVILEGE ESCALATION VULNERABILITIES (Rubén Santamarta
- Computer Associates Homepage (Computer Associates)
- Computer Associates HIPS Drivers - multiple local privilege escalation vulnerabi (Rubén Santamarta )
- RE: [Reversemode advisory] Computer Associates HIPS Drivers - multiple local pri ( "Williams, James K"