PT-2009-3315 · Ca · Ca Internet Security Suite

Nikita Tarakanov

Published

2009-08-19

Updated

2018-10-10

CVE-2009-0682

CVSS v2.0

2.1

Low

Vector

AV:L/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions CA Internet Security Suite r3 CA Internet Security Suite r4 versions prior to 9.0.0.184 CA Internet Security Suite r5 versions prior to 10.0.0.217

Description The issue is related to the vetmonnt.sys driver, which does not properly verify IOCTL calls. This allows local users to cause a denial of service, resulting in a system crash, by making a crafted call.

Recommendations For CA Internet Security Suite r3, update to a newer version that includes the fix for the vetmonnt.sys driver issue. For CA Internet Security Suite r4 versions prior to 9.0.0.184, update to version 9.0.0.184 or later to resolve the issue. For CA Internet Security Suite r5 versions prior to 10.0.0.217, update to version 10.0.0.217 or later to resolve the issue.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2009-0682

Affected Products

Ca Internet Security Suite

PT-2009-3315 · Ca · Ca Internet Security Suite

CVE-2009-0682

Weakness Enumeration

Related Identifiers

Affected Products

References · 6