CVE-2005-1693

3 documents3 sources

Severity

10.0CRITICAL

EPSS

5.1%

top 10.13%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Broadcom Etrust Antivirus Broadcom Etrust Antivirus EE Broadcom Etrust EZ Armor +9 more

Timeline

PublishedMay 24

Latest updateMay 1

Description

Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6.0, eTrust Antivirus r6.0 through 7.1, eTrust Antivirus for the Gateway r7.0 and r7.1, eTrust Secure Content Manager, eTrust Intrusion Detection, BrightStor ARCserve Backup (BAB) r11.1, Vet Antivirus, Zonelabs ZoneAlarm Security Suite, and ZoneAlarm Antivirus, allows remote attackers to gain privileges via a compressed VBA directory with a project name length of -1, which leads to a heap-based buffer overfl…

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages12 packages

▶NVDca/etrust_antivirus7.0, 7.0_sp2, 7.1+2

▶NVDbroadcom/etrust_antivirus6.0, 7.0, 7.1+2

▶NVDbroadcom/etrust_antivirus_ee6.0, 7.0+1

▶NVDca/etrust_secure_content_manager1.0

▶NVDbroadcom/etrust_secure_content_manager1.0, 1.1+1

Patches

Patch: crm.my-etrust.com ↗Patch: www3.ca.com ↗Patch: crm.my-etrust.com ↗

🔴Vulnerability Details

GHSA

GHSA-23wf-qmmc-4cr6: Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6↗2022-05-01

▶

CVEList

CVE-2005-1693: Integer overflow in Computer Associates Vet Antivirus library, as used by CA InoculateIT 6↗2005-05-24

▶