Computer Associates (CA) eTrust Security Command Center 1.0 and r8 up to SP1 CR2, and eTrust Audit 1.5 and r8, allows remote attackers to spoof alerts and conduct replay attacks by invoking eTSAPISend.exe with the desired arguments.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Etrust_audit_client | Broadcom | 1.5-sp2 (including) | 1.5-sp2 (including) |
| Etrust_audit_client | Broadcom | 1.5-sp3 (including) | 1.5-sp3 (including) |
| Etrust_audit_client | Broadcom | 8.0 (including) | 8.0 (including) |
| Etrust_audit_datatools | Broadcom | 1.5-sp2 (including) | 1.5-sp2 (including) |
| Etrust_audit_datatools | Broadcom | 1.5-sp3 (including) | 1.5-sp3 (including) |
| Etrust_audit_datatools | Broadcom | 8.0 (including) | 8.0 (including) |
| Etrust_audit_policy_manager | Broadcom | 1.5-sp2 (including) | 1.5-sp2 (including) |
| Etrust_audit_policy_manager | Broadcom | 1.5-sp3 (including) | 1.5-sp3 (including) |
| Etrust_audit_policy_manager | Broadcom | 8.0 (including) | 8.0 (including) |
| Etrust_security_command_center | Broadcom | 1.0 (including) | 1.0 (including) |
| Etrust_security_command_center | Broadcom | 8 (including) | 8 (including) |
| Etrust_security_command_center | Broadcom | 8-sp1 (including) | 8-sp1 (including) |
References
- http://secunia.com/advisories/22023
- http://secunia.com/advisories/22073
- http://securitytracker.com/id?1016909
- http://securitytracker.com/id?1016910
- http://users.tpg.com.au/adsl2dvp/advisories/200608-computerassociates.txt
- http://www.osvdb.org/29011
- http://www.securityfocus.com/archive/1/446611/100/0/threaded
- http://www.securityfocus.com/archive/1/446716/100/0/threaded
- http://www.securityfocus.com/bid/20139
- http://www.vupen.com/english/advisories/2006/3738
- http://www3.ca.com/securityadvisor/blogs/posting.aspx?id=90744\u0026pid=93243\u0026date=2006/9
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34618
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29107
- http://secunia.com/advisories/22023
- http://secunia.com/advisories/22073
- http://securitytracker.com/id?1016909
- http://securitytracker.com/id?1016910
- http://users.tpg.com.au/adsl2dvp/advisories/200608-computerassociates.txt
- http://www.osvdb.org/29011
- http://www.securityfocus.com/archive/1/446611/100/0/threaded
- http://www.securityfocus.com/archive/1/446716/100/0/threaded
- http://www.securityfocus.com/bid/20139
- http://www.vupen.com/english/advisories/2006/3738
- http://www3.ca.com/securityadvisor/blogs/posting.aspx?id=90744\u0026pid=93243\u0026date=2006/9
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34618
- https://exchange.xforce.ibmcloud.com/vulnerabilities/29107