CVE-2006-4901 Information

Description

Computer Associates (CA) eTrust Security Command Center 1.0 and r8 up to SP1 CR2 and eTrust Audit 1.5 and r8 allows remote attackers to spoof alerts and conduct replay attacks by invoking eTSAPISend.exe with the desired arguments.

Reference

http://secunia.com/advisories/22023 http://secunia.com/advisories/22073 http://securitytracker.com/id?1016909 http://securitytracker.com/id?1016910 http://users.tpg.com.au/adsl2dvp/advisories/200608-computerassociates.txt http://www.osvdb.org/29011 http://www.securityfocus.com/archive/1/446611/100/0/threaded http://www.securityfocus.com/archive/1/446716/100/0/threaded http://www.securityfocus.com/bid/20139 http://www.vupen.com/english/advisories/2006/3738 http://www3.ca.com/securityadvisor/blogs/posting.aspx?id=90744&pid=93243&date=2006/9 http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34618 https://exchange.xforce.ibmcloud.com/vulnerabilities/29107