Vulnerability Name:

CVE-2006-3223 (CCN-27473)

Assigned:2006-06-27
Published:2006-06-27
Updated:2021-04-09
Summary:Format string vulnerability in CA Integrated Threat Management (ITM), eTrust Antivirus (eAV), and eTrust PestPatrol (ePP) r8 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a scan job with format strings in the description field.
CVSS v3 Severity:5.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:L/I:L/A:L)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
5.5 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
6.5 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P)
4.8 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:S/C:P/I:P/A:P/E:U/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: CCN
Type: Full-Disclosure Mailing List, Tue Jun 27 2006 - 14:18:52 CDT
CAID 34325 - CA ITM, eAV, ePP scan job description field format string vulnerability

Source: CCN
Type: Full-Disclosure Mailing List, Tue Jun 27 2006 - 19:19:47 CDT
Layered Defense Advisory: Format String Vuln in CA eTrust

Source: MITRE
Type: CNA
CVE-2006-3223

Source: FULLDISC
Type: UNKNOWN
20060627 CAID 34325 - CA ITM, eAV, ePP scan job description field format string vulnerability

Source: CCN
Type: SA20856
CA Products Scan Job Description Format String Vulnerability

Source: SECUNIA
Type: UNKNOWN
20856

Source: CCN
Type: SECTRACK ID: 1016391
CA eTrust Antivirus Format String Bug in Scan Job Description Field Lets Local Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1016391

Source: OSVDB
Type: UNKNOWN
26654

Source: CCN
Type: OSVDB ID: 26654
CA Multiple Products Scan Job Description Field Format String

Source: BUGTRAQ
Type: UNKNOWN
20060627 CAID 34325 - CA ITM, eAV, ePP scan job description field format string vulnerability

Source: BUGTRAQ
Type: UNKNOWN
20060628 Layered Defense Advisory: Format String Vuln in CA eTrust

Source: BID
Type: UNKNOWN
18689

Source: CCN
Type: BID-18689
Computer Associates Scan Job Format String Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2006-2565

Source: CCN
Type: CA Vulnerability Information Center - Vulnerability ID: 34325
CA Integrated Threat Management, eTrust Antivirus, and eTrust PestPatrol format string vulnerability

Source: CONFIRM
Type: Patch, Vendor Advisory
http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34325

Source: CCN
Type: eTrust Antivirus Web site
eTrustĀ® Antivirus, Overview

Source: CCN
Type: eTrust PestPatrol Web site
eTrustĀ® PestPatrolĀ® Anti-Spyware Corporate Edition, Security Management

Source: CCN
Type: CA Integrated Threat Management Web site
CA Integrated Threat Management, Security Management

Source: XF
Type: UNKNOWN
ca-scan-job-description-format-string(27374)

Source: XF
Type: UNKNOWN
ca-scan-job-description-format-string(27473)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:broadcom:etrust_antivirus:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:broadcom:etrust_pestpatrol:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:broadcom:integrated_threat_management:8.0:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:broadcom:etrust_antivirus:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:broadcom:etrust_pestpatrol:8.0:*:*:*:*:*:*:*
  • OR cpe:/a:broadcom:integrated_threat_management:8.0:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    broadcom etrust antivirus 8.0
    broadcom etrust pestpatrol 8.0
    broadcom integrated threat management 8.0
    ca etrust antivirus 8.0
    ca etrust pestpatrol 8.0
    ca integrated threat management 8.0