CVE-2006-6952

Published: Jan 24, 2007Modified: Apr 23, 2026

7.2

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged IOCTLs to modify callback function pointers.

Affected (2)

Products: Ca: Host Based Intrusion Prevention System

1 product

Host Based Intrusion Prevention System

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Ca Host Based Intrusion Prevention System	Version core_6.5.4.31
Ca Host Based Intrusion Prevention System	Version firewall_6.5.4.10

References (20)

http://secunia.com/advisories/22972

Source: cve@mitre.org

Vendor Advisory

http://www.osvdb.org/30497

Source: cve@mitre.org

http://www.osvdb.org/30498

Source: cve@mitre.org

http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=38

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/451952/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/452286/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/458040/100/200/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/21140

Source: cve@mitre.org

Exploit

http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97729

Source: cve@mitre.org

http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34818

Source: cve@mitre.org

http://secunia.com/advisories/22972