Zero Day Initiative

TippingPoint Zero Day Initiative

ZDI STATISTICS...

# Created Cases:	1,326
# Researchers:	816
Avg. Verification Time:	15 days

CA eTrust AntiVirus Server inoweb Buffer Overflow Vulnerability

ZDI-07-028: May 10th, 2007

CVE ID

Affected Vendors

Computer Associates

Affected Products

eTrust AntiVirus

Vulnerability Details

This vulnerability allows attackers to execute arbitrary code on vulnerable installations of Computer Associates AntiVirus Server. User interaction is not required to exploit this vulnerability.

The specific flaw exists in the authentication function of the inoweb service that listens by default on TCP port 12168. The function copies both the username and password into fixed-length stack buffers. If an attacker provides overly long values for these parameters, an exploitable buffer overflow occurs.

Vendor Response

Computer Associates has issued an update to correct this vulnerability. More details can be found at:

http://supportconnectw.ca.com/public/antivirus/infodocs/caav-secnotice050807.asp

Disclosure Timeline

Credit

This vulnerability was discovered by:

Published Advisories

ZDI-08-047: RealNetworks

published 2008-07-25

ZDI-08-046: RealNetworks

published 2008-07-25

ZDI-08-045: Apple

published 2008-07-25

ZDI-08-044: Mozilla Firefox

published 2008-07-17

ZDI-08-043: Sun Microsystems

published 2008-07-17

Upcoming Advisories

reported 2008-07-08, 23 days ago

reported 2008-07-07, 24 days ago

reported 2008-07-07, 24 days ago

reported 2008-07-03, 28 days ago

reported 2008-06-26, 35 days ago

Recent Press

Apple releases new Mac OS X 10.5.5

published 2008-07-31, ITWire

High-priority patch fixes critical vulns in RealPlayer

published 2008-07-25, The Register

Firefox 3.0.1 Fixes 'Carpet Bombing' Issue

published 2008-07-17, SlashDot

iPhone and iPod Touch updated with security patches

published 2008-07-11, CNET

Apple TV gets a security update

published 2008-07-10, CNET