CVE-2005-1693
published 2005-05-24CVE-2005-1693: Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6.0, eTrust Antivirus r6.0 through 7.1, eTrust Antivirus for the…
PriorityP341critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
6.89%
93.3th percentile
Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6.0, eTrust Antivirus r6.0 through 7.1, eTrust Antivirus for the Gateway r7.0 and r7.1, eTrust Secure Content Manager, eTrust Intrusion Detection, BrightStor ARCserve Backup (BAB) r11.1, Vet Antivirus, Zonelabs ZoneAlarm Security Suite, and ZoneAlarm Antivirus, allows remote attackers to gain privileges via a compressed VBA directory with a project name length of -1, which leads to a heap-based buffer overflow.
Affected
26 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| broadcom | etrust_antivirus | — | — |
| broadcom | etrust_antivirus | — | — |
| broadcom | etrust_antivirus | — | — |
| broadcom | etrust_antivirus_ee | — | — |
| broadcom | etrust_antivirus_ee | — | — |
| broadcom | etrust_ez_armor | — | — |
| broadcom | etrust_ez_armor | — | — |
| broadcom | etrust_ez_armor | — | — |
| broadcom | etrust_ez_armor | — | — |
| broadcom | etrust_ez_armor | — | — |
| broadcom | etrust_ez_armor_le | — | — |
| broadcom | etrust_ez_armor_le | — | — |
| broadcom | etrust_intrusion_detection | — | — |
| broadcom | etrust_intrusion_detection | — | — |
| broadcom | etrust_intrusion_detection | — | — |
| broadcom | etrust_intrusion_detection | — | — |
| broadcom | etrust_secure_content_manager | — | — |
| broadcom | etrust_secure_content_manager | — | — |
| broadcom | inoculateit | — | — |
| ca | brightstor_arcserve_backup | — | — |
| ca | etrust_antivirus | — | — |
| ca | etrust_antivirus | — | — |
| ca | etrust_antivirus | — | — |
| ca | etrust_intrusion_detection | — | — |
| ca | etrust_secure_content_manager | — | — |
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&openparameter=1588http://marc.info/?l=bugtraq&m=111686576416450&w=2http://secunia.com/advisories/15470http://secunia.com/advisories/15479http://securitytracker.com/id?1014050http://www.rem0te.com/public/images/vet.pdfhttp://www.securityfocus.com/bid/13710http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=32896http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&openparameter=1588http://marc.info/?l=bugtraq&m=111686576416450&w=2http://secunia.com/advisories/15470http://secunia.com/advisories/15479http://securitytracker.com/id?1014050http://www.rem0te.com/public/images/vet.pdfhttp://www.securityfocus.com/bid/13710http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=32896
2005-05-24
Published