CVE-2006-6952

Computer Associates HIPS - Privilege Escalation

Title source: llm

Description

Computer Associates Host Intrusion Prevention System (HIPS) drivers (1) Core kmxstart.sys 6.5.4.31 and (2) Firewall kmxfw.sys 6.5.4.10 allow local users to gain privileges by using certain privileged IOCTLs to modify callback function pointers.

Exploits (2)

exploitdb WORKING POC VERIFIED

by Ruben Santamarta · clocalwindows

https://www.exploit-db.com/exploits/29070

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Ruben Santamarta · clocalwindows

https://www.exploit-db.com/exploits/29069

View Code ZIP pw:eip

References (10)

[Various Sources] http://www3.ca.com/securityadvisor/newsinfo/collateral.aspx?cid=97729

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/452286/100/0/threaded

[Exploit] http://www.securityfocus.com/bid/21140

[Third Party Advisory, VDB Entry] http://www.osvdb.org/30497

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/451952/100/0/threaded

[Vendor Advisory] http://secunia.com/advisories/22972

[Third Party Advisory, VDB Entry] http://www.osvdb.org/30498

[Various Sources] http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=34818

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/458040/100/200/threaded

[Various Sources] http://www.reversemode.com/index.php?option=com_remository&Itemid=2&func=fileinfo&id=38

Scores

EPSS 0.0031

EPSS Percentile 54.0%

Details

Status published

Products (2)

ca/host-based_intrusion_prevention_system core_6.5.4.31

ca/host-based_intrusion_prevention_system firewall_6.5.4.10

Published Jan 24, 2007

Tracked Since Feb 18, 2026