Insecure File Permissions in eTrust EZ Antivirus by Computer Associates
CVE-2004-1149

Currently unrated

Key Information:

Vendor: Broadcom
Status: Etrust Ez Antivirus
Vendor: CVE Published:; 10 January 2005

What is CVE-2004-1149?

Computer Associates eTrust EZ Antivirus versions 7.0.0 to 7.0.4, including 7.0.1.4, are vulnerable due to inadequate file permissions. This flaw allows local users to exploit permissions to replace critical executable files with malicious ones. The vulnerability can lead to unauthorized privilege escalation, compromising the integrity of the antivirus system and putting users at risk.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/18502

vdb-entryx_refsource_XF

http://www.idefense.com/application/poi/display?id=164

third-party-advisoryx_refsource_IDEFENSE

http://crm.my-etrust.com/login.asp?username=guest&target=...

x_refsource_CONFIRM

Timeline

Vulnerability published
Jan 10, 2005
Vulnerability Reserved
Dec 7, 2004

Broadcom

What is CVE-2004-1149?

References

Timeline