Family: Windows --> Category: infos
CA eTrust Antivirus WebScan ActiveX Control Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary
Checks for version of WebScan ActiveX control
Detailed Explanation for this Vulnerability Test
The remote Windows host has an ActiveX control that is affected by
The Windows remote host contains the WebScan ActiveX control, which is
used by Computer Associates' eTrust Antivirus WebScan service.
The version of this ActiveX control on the remote host reportedly
contains a buffer overflow and fails to properly validate parameters.
Exploitation of these issues may allow an unauthenticated remote
attacker to execute arbitrary code or gain privileged access.
See also :
Either remote the control or upgrade to WebScan v220.127.116.118 or later
by visiting http://www3.ca.com/securityadvisor/virusinfo/scan.aspx and
allowing Internet Explorer to update a new version of webscan.cab.
High / CVSS Base Score : 7.0
Click HERE for more information and discussions on this network vulnerability scan.