Vulnerability Description
Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create and overwrite arbitrary files via a .. (dot dot) in the argument to the SaveToFile method. NOTE: this can be leveraged for code execution by writing to a Startup folder. NOTE: some of these details are obtained from third party information.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ca | Internet Security Suite Plus 2008 | All versions |
Related Weaknesses (CWE)
References
- http://retrogod.altervista.org/9sg_CA_poc.htmlExploit
- http://secunia.com/advisories/30420Vendor Advisory
- http://www.securityfocus.com/archive/1/492679/100/0/threaded
- http://www.securitytracker.com/id?1020129
- http://www.vupen.com/english/advisories/2008/1696/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42712
- https://www.exploit-db.com/exploits/5682
- http://retrogod.altervista.org/9sg_CA_poc.htmlExploit
- http://secunia.com/advisories/30420Vendor Advisory
- http://www.securityfocus.com/archive/1/492679/100/0/threaded
- http://www.securitytracker.com/id?1020129
- http://www.vupen.com/english/advisories/2008/1696/references
- https://exchange.xforce.ibmcloud.com/vulnerabilities/42712
- https://www.exploit-db.com/exploits/5682
FAQ
What is CVE-2008-2511?
CVE-2008-2511 is a vulnerability with a CVSS score of 9.3 (HIGH). Directory traversal vulnerability in the UmxEventCli.CachedAuditDataList.1 (aka UmxEventCliLib) ActiveX control in UmxEventCli.dll in CA Internet Security Suite 2008 allows remote attackers to create ...
How severe is CVE-2008-2511?
CVE-2008-2511 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-2511?
Check the references section above for vendor advisories and patch information. Affected products include: Ca Internet Security Suite Plus 2008.