CVE-2004-1149

Name of the Vulnerable Software and Affected Versions: Computer Associates eTrust EZ Antivirus versions 7.0.0 through 7.0.4

Description: The issue allows local users to gain privileges by replacing critical programs with malicious ones due to insecure permissions (ACLs) used during the installation of its files. This can be demonstrated by replacing VetMsg.exe with a malicious program.

Recommendations: For versions 7.0.0 through 7.0.4, consider restricting access to critical programs to prevent local users from replacing them with malicious ones until a fix is available. As a temporary workaround, monitor the system for any suspicious activity related to the replacement of critical programs.