Vulnerability Detail

Computer Associates eTrust EZ Antivirus GUI password protection bypass vulnerability

Date Discovered:
26 Oct 2004

Date Published:
19 Nov 2004

Last Updated:
1 Dec 2004

Threat Assessment

Overall Risk: Low

Popularity : Medium

Impact: Medium

Simplicity: Low

Characteristics

Vulnerability ID: 31832
Discovered By: Cengiz Aykanat

Exploitable Locally: Yes
Exploitable Remotely: No

Impact: Local attackers can bypass password protection mechanisms.

Root Cause: Software Vulnerability

Description

Recommendations

Affected Technologies

References

Description

Computer Associates eTrust EZ Antivirus contains a vulnerability that can allow local attackers to bypass password protection mechanisms. The vulnerability is due to the proxy password entered into the GUI being the actual password displayed using star symbols. Local attackers can use a variety of tools to recover the actual password and exploit this vulnerability.

Recommendations

-------------------------------------------------------------------------------
For: eTrust EZ Antivirus 7
Apply: eTrust EZ Antivirus 7.0.2.1

Upgrade to eTrust EZ Antivirus 7.0.2.1 or later from the vendor.

http://consumerdownloads.ca.com/myeTrust/apps/EZAntivirus.exe

Vendor reference:

http://www.ca.com

Affected Technologies

Computer Associates: CA eTrust EZ Antivirus 7

References

CA Global Security Advisor

Current threat condition: Low

Documents and Tools

Find Threats

Viruses Spyware
Vulnerabilities All

Page Tools