RSS   Vulnerabilities for 'Internet security suite 2010'   RSS

2012-08-25
 
CVE-2010-5156

 

 
** DISPUTED ** Race condition in CA Internet Security Suite Plus 2010 6.0.0.272 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack. NOTE: this issue is disputed by some third parties because it is a flaw in a protection mechanism for situations where a crafted program has already begun to execute.

 
2011-02-25
 
CVE-2011-1036

CWE-Other
 

 
The XML Security Database Parser class in the XMLSecDB ActiveX control in the HIPSEngine component in the Management Server before 8.1.0.88, and the client before 1.6.450, in CA Host-Based Intrusion Prevention System (HIPS) 8.1, as used in CA Internet Security Suite (ISS) 2010, allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via vectors involving the SetXml and Save methods.

 

 >>> Vendor: CA 195 Products
Controlit
Arcserve backup
Inoculan
Inoculateit
Etrust intrusion detection
Etrust access control
Siteminder
Inoculateit agent for exchange
Ccc harvest
Arcserve backup 2000
Gateway security
Mlink
Unicenter remote control host
Unicenter remote control
Unicenter remote control option
Identityminder
Brightstor arcserve backup
Etrust antivirus
Etrust antivirus gateway
Etrust ez antivirus
Etrust ez armor
Etrust secure content manager
Unicenter tng
Etrust antivirus ee
Common services
Unicenter network and systems management
Unicenter serviceplus service desk
Unicenter web services distributed management
License software
Unicenter asset management
Internet security suite
Brightstor arcserve backup agent
Brightstor enterprise backup
Brightstor enterprise backup agent
Etrust ez armor le
Vet antivirus
Etrust siteminder
Brightstor arcserve backup hp
Advantage data transport
Adviseit
Brightstor portal
Brightstor san manager
Cleverpath ecm
Cleverpath olap
Cleverpath predictive analysis server
Etrust admin
Message queuing
Unicenter application performance monitor
Unicenter data transport option
Unicenter enterprise job manager
Unicenter jasmine
Unicenter management
Unicenter nsm
Unicenter performance management
Unicenter service level management
Unicenter software delivery
Cleverpath aion
Messaging
Unicenter management portal
Unicenter nsm wireless network management option
Igateway
Etrust antivirus iris engine
Brightstor arcserve backup laptops desktops
Brightstor process automation manager
Brightstor storage resource manager
Etrust audit aries
Etrust audit irecorder
Etrust directory
Etrust identity minder
Etrust integrated threat management
Itechnology igateway
Unicenter application server managment
Unicenter asset portfolio management
Unicenter autosys jm
Unicenter ca web services distributed management
Unicenter exchange management console
Unicenter service catalog fulfillment accounting
Unicenter service delivery
Unicenter service desk
Unicenter service desk knowledge tools
Unicenter service fulfillment
Unicenter service metric analysis
Unicenter web server management
Cleverpath portal
Brightstor mobile backup
Business protection suite
Desktop protection suite
Server protection suite
Directory
Resource initialization manager
Etrust pestpatrol
Integrated threat management
Etrust antivirus webscan
Identity manager
Etrust security command center
Etrust audit client
Etrust audit datatools
Etrust audit policy manager
Protection suites
Anti-virus
See all Products for Vendor CA


Copyright 2024, cxsecurity.com

 

Back to Top