CVE-2008-2511

Name of the Vulnerable Software and Affected Versions CA Internet Security Suite 2008

Description A directory traversal issue exists in the UmxEventCli.CachedAuditDataList.1 ActiveX control, allowing remote attackers to create and overwrite arbitrary files by using a .. (dot dot) in the argument to the SaveToFile method. This can potentially be leveraged for code execution by writing to a Startup folder.

Recommendations For CA Internet Security Suite 2008, consider disabling the SaveToFile method in the UmxEventCli.CachedAuditDataList.1 ActiveX control as a temporary workaround to minimize the risk of exploitation. Restrict access to sensitive folders, such as Startup folders, to prevent potential code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.