Format String Vulnerability in CA Integrated Threat Management, eTrust Antivirus, and eTrust PestPatrol
CVE-2006-3223

Currently unrated

Key Information:

Vendor: Broadcom
Status: Etrust Antivirus; Etrust Pestpatrol; Integrated Threat Management
Vendor: CVE Published:; 27 June 2006

What is CVE-2006-3223?

A significant format string vulnerability exists in CA Integrated Threat Management, eTrust Antivirus, and eTrust PestPatrol that allows attackers to craft a malicious scan job with vulnerable format strings in the description field. This can lead to a denial of service by crashing the application and potentially allows the execution of arbitrary code, compromising system security.

References

http://www.securityfocus.com/bid/18689

vdb-entryx_refsource_BID

http://lists.grok.org.uk/pipermail/full-disclosure/2006-J...

mailing-listx_refsource_FULLDISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/27374

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Jun 27, 2006
Vulnerability Reserved
Jun 25, 2006

Broadcom

What is CVE-2006-3223?

References

Timeline