CA eTrust Audit Event Alerting System Missing Authentication - Secunia Advisories - Vulnerability Intelligence

CA eTrust Audit Event Alerting System Missing Authentication
Secunia Advisory:	SA22073	Advisory Toolbox: Issue ticket Save in to-do list Mark as handled Exploit information Download as PDF Review actions Add comment
Release Date:	2006-09-22
Popularity:	6,597 views

Critical:	Less critical
Impact:	Security Bypass
Where:	From local network
Solution Status:	Vendor Workaround

Software:	CA eTrust Audit 1.x CA eTrust Audit 8.x

Subscribe:	Instant alerts on relevant vulnerabilities

Description: A vulnerability has been reported in CA eTrust Audit, which can be exploited by malicious people to bypass certain security restrictions. For more information, see vulnerability #3 in: SA22023 The vulnerability has been reported in versions 1.5 and r8. Solution: The vendor recommends to filter traffic to the event system. Other References: SA22023: http://secunia.com/advisories/22023/

Track this Secunia Advisory
Customers of the Secunia Vulnerability Intelligence solutions will automatically receive updates when new information regarding this advisory is released. Read more about our Vulnerability Intelligence solutions and what they can do for you and your company.

About this Secunia Advisory
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise. Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.

Latest Advisories

Today

Highly // 391 views

Moderately // 195 views

Less // 224 views

Moderately // 222 views

Highly // 227 views

Less // 265 views

Highly // 434 views

Moderately // 297 views

Less // 259 views

Not // 404 views

Solutions | More...

Send Feedback to Secunia
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com. Ideas, suggestions, and other feedback are most welcome.

Most Popular - 3 Hours

1.	Apple iPhone / iPod touch Multiple Vulnerabilities // 135 views
2.	BitDefender Antivirus PDF Processing Memory Corruption Vulnerability // 66 views
3.	Sun Java JDK / JRE Multiple Vulnerabilities // 55 views
4.	vBulletin Visitor Messages Script Insertion Vulnerability // 54 views
5.	EMC Control Center SAN Manager Multiple Vulnerabilities // 45 views
6.	Easyedit CMS Multiple SQL Injection Vulnerabilities // 45 views
7.	SemanticScuttle Cross-Site Scripting Vulnerabilities // 43 views
8.	Fedora update for thunderbird // 43 views
9.	Checkpoint VPN-1 Information Disclosure Vulnerability // 43 views
10.	IBM Workplace Web Content Management Cross-Site Scripting Vulnerabilities // 39 views