CVE-2008-2511 - OpenCVE

Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Ca	Internet Security Suite Plus 2008

Configuration 1 [-]

cpe:2.3:a:ca:internet_security_suite_plus_2008:*:*:*:*:*:*:*:*

References

Link	Resource
http://retrogod.altervista.org/9sg_CA_poc.html	Exploit
http://secunia.com/advisories/30420	Vendor Advisory
http://www.securityfocus.com/archive/1/492679/100/0/threaded
http://www.securitytracker.com/id?1020129
http://www.vupen.com/english/advisories/2008/1696/references
https://exchange.xforce.ibmcloud.com/vulnerabilities/42712
https://www.exploit-db.com/exploits/5682

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2008-06-02T14:00:00

Updated: 2018-10-11T19:57:01

Reserved: 2008-06-02T00:00:00

Link: CVE-2008-2511

JSON object: View

NVD Information

Status : Modified

Published: 2008-06-02T21:30:00.000

Modified: 2018-10-11T20:41:46.583

Link: CVE-2008-2511

JSON object: View

Redhat Information

No data.

CWE

CWE-22

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-05-28T00:00:00", "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-11T19:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "5682", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/5682"}, {"name": "ADV-2008-1696", "tags": ["vdb-entry", "x_refsource_VUPEN"], "url": "http://www.vupen.com/english/advisories/2008/1696/references"}, {"name": "30420", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30420"}, {"tags": ["x_refsource_MISC"], "url": "http://retrogod.altervista.org/9sg_CA_poc.html"}, {"name": "internet-security-umxeventcli-file-overwrite(42712)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42712"}, {"name": "1020129", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1020129"}, {"name": "20080528 [NSG_28-5-08] CA Internet Security Suite 2008 (UmxEventCli.dll/SaveToFile()) remote file corruption poc", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/492679/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-2511", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "5682", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/5682"}, {"name": "ADV-2008-1696", "refsource": "VUPEN", "url": "http://www.vupen.com/english/advisories/2008/1696/references"}, {"name": "30420", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30420"}, {"name": "http://retrogod.altervista.org/9sg_CA_poc.html", "refsource": "MISC", "url": "http://retrogod.altervista.org/9sg_CA_poc.html"}, {"name": "internet-security-umxeventcli-file-overwrite(42712)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42712"}, {"name": "1020129", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1020129"}, {"name": "20080528 [NSG_28-5-08] CA Internet Security Suite 2008 (UmxEventCli.dll/SaveToFile()) remote file corruption poc", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/492679/100/0/threaded"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-2511", "datePublished": "2008-06-02T14:00:00", "dateReserved": "2008-06-02T00:00:00", "dateUpdated": "2018-10-11T19:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ca:internet_security_suite_plus_2008:*:*:*:*:*:*:*:*", "matchCriteriaId": "33F7E184-EA23-487C-83ED-65CF8DD2DB18", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information."}, {"lang": "es", "value": "Una vulnerabilidad de salto de directorio en el control ActiveX UmxEventCli.CachedAuditDataList.1 (tambi\u00e9n se conoce como UmxEventCliLib) en biblioteca UmxEventCli.dll en CA Internet Security Suite 2008, permite a los atacantes remotos crear y sobrescribir archivos arbitrarios por medio de un .. (punto punto) en el argumento al m\u00e9todo SaveToFile . NOTA: esto puede ser aprovechado para la ejecuci\u00f3n del c\u00f3digo mediante la escritura en una carpeta Startup. NOTA: algunos de estos detalles fueron obtenidos de informaci\u00f3n de terceros."}], "id": "CVE-2008-2511", "lastModified": "2018-10-11T20:41:46.583", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 9.3, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2008-06-02T21:30:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://retrogod.altervista.org/9sg_CA_poc.html"}, {"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/30420"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/492679/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securitytracker.com/id?1020129"}, {"source": "cve@mitre.org", "url": "http://www.vupen.com/english/advisories/2008/1696/references"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42712"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/5682"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}