Intrusion Prevention

CA.eTrust.Intrusion.Detection.Encryption.Key.Handling.DoS

Description

This indicates a possible exploit of a denial of service vulnerability in CA (formerly Computer Associates) eTrust Intrusion Detection.
This flaw is due to an input validation error in the administrative login functionality of the eTrust Intrusion Detection server.

Affected Products

Computer Associates eTrust Intrusion Detection 3.0 SP 1
Computer Associates eTrust Intrusion Detection 3.0
Computer Associates eTrust Intrusion Detection 2.0.0 SP1

Impact

Denial of service.

Recommended Actions

Apply patch for eTrust Intrusion Detection 3.0 SP1 :
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO85469
Apply patch for eTrust Intrusion Detection 3.0 :
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO85472
Apply patch for eTrust Intrusion Detection 2.0 SP1 :
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO85488

CVE References

CVE-2007-1005