Today, 2011-02-23, we published a security notice to address a vulnerability in CA Host-Based Intrusion Prevention System. The security notice includes patches for a medium risk vulnerability that was discovered by Andrea Micalizzi aka rgod, and reported to us by TippingPoint ZDI. Although the vulnerability could potentially allow a remote attacker to execute arbitrary code, the risk is partially mitigated because user interaction is required for successful exploitation. We are not aware of this issue being exploited in the wild, and we do not anticipate any significant activity.
Currently, we have patches available for CA HIPS r8.1, as noted in the security notice. We do not yet have fixes available for CA Internet Security Suite (ISS) 2010, but we do plan to have a solution posted soon.
The security notice for this vulnerability is published on the CA Support web site:
CA20110223-01: Security Notice for CA Host-Based Intrusion Prevention System
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID={53A608DF-BFDB-4AB3-A98F-E4BB6BC7A2F4}
Thanks and regards,
Ken Williams, Director
ca technologies Product Vulnerability Response Team
ca technologies Business Unit Operations
wilja22@ca.com
The opinions and statements on this site are my own and do not necessarily reflect the opinions or policies of CA.