Computer Associates Scan Job Format String Vulnerability

Computer Associates Scan Job Format String Vulnerability

Multiple Computer Associates applications are prone to a format-string vulnerability because they fail to properly sanitize user-supplied input. The following applications are vulnerable:

- CA Integrated Threat Management r8
- eTrust Antivirus r8
- eTrust PestPatrol Anti-spyware Corporate Edition r8

A successful attack may crash the application or lead to arbitrary code execution. This may facilitate unauthorized access or privilege escalation.