Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2007-2523

5 documents4 sources

Severity

7.2HIGH

EPSS

0.6%

top 30.48%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Broadcom Integrated Threat Management CA Anti-virus FOR THE Enterprise

Timeline

PublishedMay 11

Latest updateMay 1

Description

CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared file mapping, which allows local users to modify this mapping and gain privileges by triggering a stack-based buffer overflow in InoCore.dll before 8.0.448.0.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages2 packages

▶NVDca/anti-virus8

▶NVDbroadcom/integrated_threat_management8.0

Patches

Patch: supportconnectw.ca.com ↗Patch: supportconnectw.ca.com ↗

🔴Vulnerability Details

GHSA

GHSA-j5vw-526q-m7h7: CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared↗2022-05-01

▶

CVEList

CVE-2007-2523: CA Anti-Virus for the Enterprise r8 and Threat Manager r8 before 20070510 use weak permissions (NULL security descriptor) for the Task Service shared↗2007-05-11

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Excel 2007/2010/2013 - BIFFRecord Use-After-Free↗2015-09-16

▶

Exploit-DB

CA (Multiple Products) - Console Server / 'InoCore.dll' Remote Code Execution↗2007-05-09

▶