CA eTrust Intrusion Detection System Key Exchange Remote Denial of Service Vulnerability

CA eTrust Intrusion Detection System Key Exchange Remote Denial of Service Vulnerability

Computer Associates eTrust Intrusion Detection System is prone to a remote denial-of-service vulnerability.

This issue arises because the application fails to perform sufficient boundary checks when handling user-supplied data.

A successful attack can crash the administration service, denying further service to legitimate users.

eTrust Intrusion Detection System 2.0, 3.0 and 3.0 SP1 are vulnerable.