VULHUB ™

Computer Associates eTrust Antivirus EE, under some circumstances, may allow attackers to obtain elevated privileges. If a specially crafted commandline argument is passed, it may be possible to trick eTrust into executing a different program than the one intended. Thus, it is possible to cause eTrust to execute an attacker-supplied program with the privileges of the calling process, typically SYSTEM.

Computer Associates eTrust Antivirus EE, under some circumstances, may allow attackers to obtain elevated privileges. If a specially crafted commandline argument is passed, it may be possible to trick eTrust into executing a different program than the one intended. Thus, it is possible to cause eTrust to execute an attacker-supplied program with the privileges of the calling process, typically SYSTEM.