Vulnerability Description
Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged IOCTLs to modify callback function pointers.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ca | Host-Based Intrusion Prevention System | core_6.5.4.31 |
References
- http://secunia.com/advisories/22972Vendor Advisory
- http://www.osvdb.org/30497
- http://www.osvdb.org/30498
- http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinf
- http://www.securityfocus.com/archive/1/451952/100/0/threaded
- http://www.securityfocus.com/archive/1/452286/100/0/threaded
- http://www.securityfocus.com/archive/1/458040/100/200/threaded
- http://www.securityfocus.com/bid/21140Exploit
- http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97729
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34818
- http://secunia.com/advisories/22972Vendor Advisory
- http://www.osvdb.org/30497
- http://www.osvdb.org/30498
- http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinf
- http://www.securityfocus.com/archive/1/451952/100/0/threaded
FAQ
What is CVE-2006-6952?
CVE-2006-6952 is a vulnerability with a CVSS score of 7.2 (HIGH). Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged ...
How severe is CVE-2006-6952?
CVE-2006-6952 has been rated HIGH with a CVSS base score of 7.2/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-6952?
Check the references section above for vendor advisories and patch information. Affected products include: Ca Host-Based Intrusion Prevention System.