Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1036

Overview

Vulnerability Score 8.8 8.8
CVE Id CVE-2011-1036
Last Modified 21 Sep 2011 11:29:23
Published 25 Feb 2011 01:00:02
Confidentiality Impact NONE NONE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1036

Summary

The XML Security Database Parser class in the XMLSecDB ActiveX control in the HIPSEngine component in the Management Server before 8.1.0.88, and the client before 1.6.450, in CA Host-Based Intrusion Prevention System (HIPS) 8.1, as used in CA Internet Security Suite (ISS) 2010, allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via vectors involving the SetXml and Save methods.

Vulnerable Systems

Application

  • Ca Host-based Intrusion Prevention System 8.1

  • Ca Internet Security Suite 2010

  • Ca Internet Security Suite 2011


References

CONFIRM - https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID={53A608DF-BFDB-4AB3-A98F-E4BB6BC7A2F4}

XF - ca-products-activex-file-overwrite(65632)

MISC - http://www.zerodayinitiative.com/advisories/ZDI-11-093

VUPEN - ADV-2011-0496

SECTRACK - 1025120

BID - 46539

BUGTRAQ - 20110225 CA20110223-01: Security Notice for CA Host-Based Intrusion Prevention System

BUGTRAQ - 20110223 ZDI-11-093: CA Internet Security Suite HIPS XML Security Database Parser Class Remote Code Execution Vulnerability

SREASON - 8106

SECUNIA - 43490

SECUNIA - 43377


Last Updated: 27 May 2016 10:56:08