CVSS: 7.0EPSS: 0%CPEs: 2EXPL: 0CVE-2010-5156
https://notcve.org/view.php?id=CVE-2010-5156
25 Aug 2012 — Race condition in CA Internet Security Suite Plus 2010 6.0.0.272 on Windows XP allows local users to bypass kernel-mode hook handlers, and execute dangerous code that would otherwise be blocked by a handler but not blocked by signature-based malware detection, via certain user-space memory changes during hook-handler execution, aka an argument-switch attack or a KHOBE attack. NOTE: this issue is disputed by some third parties because it is a flaw in a protection mechanism for situations where a crafted prog... • http://archives.neohapsis.com/archives/bugtraq/2010-05/0026.html • CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') •
CVSS: 9.8EPSS: 5%CPEs: 3EXPL: 0CVE-2011-1036 – CA Internet Security Suite HIPS XML Security Database Parser Class Remote Code Execution Vulnerability
https://notcve.org/view.php?id=CVE-2011-1036
23 Feb 2011 — The XML Security Database Parser class in the XMLSecDB ActiveX control in the HIPSEngine component in the Management Server before 8.1.0.88, and the client before 1.6.450, in CA Host-Based Intrusion Prevention System (HIPS) 8.1, as used in CA Internet Security Suite (ISS) 2010, allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via vectors involving the SetXml and Save methods. La clase XML Security Database Parser en el control XMLSecDB ActiveX en el c... • http://secunia.com/advisories/43377 •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 2CVE-2010-4502 – CA Internet Security Suite 2010 - 'KmxSbx.sys' Kernel Pool Overflow
https://notcve.org/view.php?id=CVE-2010-4502
08 Dec 2010 — Integer overflow in KmxSbx.sys 6.2.0.22 in CA Internet Security Suite Plus 2010 allows local users to cause a denial of service (pool corruption) and execute arbitrary code via crafted arguments to the 0x88000080 IOCTL, which triggers a buffer overflow. Desbordamienteo de entero en KmxSbx.sys v6.2.0.22 de CA Internet Security Suite Plus 2010 permite a los usuarios locales causar una denegación de servicio (corrupción del pool) y ejecutar código a su elección a través de argumentos manipulados a el 0x8800008... • https://www.exploit-db.com/exploits/15624 • CWE-189: Numeric Errors •