[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-disclosure] RE: CAID 32896 - Computer Associates Vet Antivirus engine heap overflow vulnerability

To: <full-disclosure@xxxxxxxxxxxxxxxxx>
Subject: [Full-disclosure] RE: CAID 32896 - Computer Associates Vet Antivirus engine heap overflow vulnerability
From: "Williams, James K" <James.Williams@xxxxxx>
Date: Fri, 27 May 2005 14:53:17 -0400

 
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1


Hello,

I have an update for the "Computer Associates Vet Antivirus engine 
heap overflow vulnerability" that was disclosed on 2005/05/23.  
'BrightStor ARCserve Backup (BAB) r11.1 Windows' does NOT use the Vet 
Antivirus engine in any part of the product.  Furthermore, none of the 
BrightStor ARCserve Backup products use the Vet Antivirus engine.  BAB 
is consequently NOT affected by the heap overflow vulnerability.

References:
CAID 32896 
OSVDB 16780
CAN-2005-1693
BID 13710

Regards,
kw
                                                           
Ken Williams ; Vulnerability Research 
Computer Associates ; 0xE2941985
A9F9 44A6 B421 FF7D 4000 E6A9 7925 91DF E294 1985

-----BEGIN PGP SIGNATURE-----
Version: PGP 8.1

iQA/AwUBQpdsm3klkd/ilBmFEQJR+gCeNHht2i5hikVSp5sejesh2QMxop4AoIVr
8JEVCWqJgd3flnS9tmlwRxsi
=IawI
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

Prev by Date: [Full-disclosure] [AppSecInc Advisory BEA05-V0100] BEA WebLogic Administration Console error page cross-site scripting vulnerability
Next by Date: Re: [Full-disclosure] Bank of America SiteKeys ineffective?
Previous by thread: [Full-disclosure] [AppSecInc Advisory BEA05-V0100] BEA WebLogic Administration Console error page cross-site scripting vulnerability
Next by thread: [Full-disclosure] ClamAV: Local Privilege Escalation Vulnerability On MacOS [SCN Advisory #04]
Index(es):
- Date
- Thread