Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3174

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-3174
Last Modified 07 Mar 2011 10:10:19
Published 12 Aug 2008 07:41:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3174

Summary

Unspecified vulnerability in the kmxfw.sys driver in CA Host-Based Intrusion Prevention System (HIPS) r8, as used in CA Internet Security Suite and Personal Firewall, allows remote attackers to cause a denial of service via unknown vectors, related to "insufficient validation."

Vulnerable Systems

Application

  • Computer Associates Host Based Intrusion Prevention System R8

  • Computer Associates Internet Security Suite 2007

  • Computer Associates Internet Security Suite 2008

  • Computer Associates Personal Firewall 2007

  • Computer Associates Personal Firewall 2008


References

XF - ca-kmxfw-dos(44393)

VUPEN - ADV-2008-2339

SECTRACK - 1020663

SECTRACK - 1020662

SECTRACK - 1020661

BID - 30651

BUGTRAQ - 20080812 CA Host-Based Intrusion Prevention System SDK kmxfw.sys Multiple Vulnerabilities

CONFIRM - http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=36560

SECUNIA - 31434


Last Updated: 27 May 2016 10:48:06