CVE-2006-6496

Severity

65%

Complexity

27%

Confidentiality

165%

The (1) VetMONNT.sys and (2) VetFDDNT.sys drivers in CA Anti-Virus 2007 8.1, Anti-Virus for Vista Beta 8.2, and CA Internet Security Suite 2007 v3.0 do not properly handle NULL buffers, which allows local users with administrative access to cause a denial of service (system crash) via certain IOCTLs.

The (1) VetMONNT.sys and (2) VetFDDNT.sys drivers in CA Anti-Virus 2007 8.1, Anti-Virus for Vista Beta 8.2, and CA Internet Security Suite 2007 v3.0 do not properly handle NULL buffers, which allows local users with administrative access to cause a denial of service (system crash) via certain IOCTLs.

CVSS 2.0 Base Score 6.6. CVSS Attack Vector: local. CVSS Attack Complexity: medium. CVSS Vector: (AV:L/AC:M/Au:S/C:C/I:C/A:C).

Overview

Type

Computer Associates

First reported 18 years ago

2006-12-13 21:28:00

Last updated 6 years ago

2018-10-17 21:48:00

Affected Software

Computer Associates etrust Antivirus 2007

8.1

Computer Associates eTrust Antivirus 8.2 Beta

8.2

Computer Associates Internet Security Suite 2007

3.0

References

http://crm.my-etrust.com/CIDocument.asp?KDId=2651&GUID=9FD7E4F8362C4A168D88B4FFA34DCB4C

23378

1017381

1017382

30845

http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=41

20061214 [CAID 34870]: CA Anti-Virus vetfddnt.sys, vetmonnt.sys Local Denial of Service Vulnerabilities

21593

ADV-2006-5010

http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34870

ca-vetmonnt-vetfddnt-dos(30909)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.