{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2004-12-15T00:00:00", "descriptions": [{"lang": "en", "value": "Computer Associates eTrust EZ Antivirus 7.0.0 to 7.0.4, including 7.0.1.4, installs its files with insecure permissions (ACLs), which allows local users to gain privileges by replacing critical programs with malicious ones, as demonstrated using VetMsg.exe."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "etrust-antivirus-insecure-permissions(18502)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18502"}, {"name": "20041215 Computer Associates eTrust EZ Antivirus Insecure File Permission Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE"], "url": "http://www.idefense.com/application/poi/display?id=164"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&openparameter"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2004-1149", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Computer Associates eTrust EZ Antivirus 7.0.0 to 7.0.4, including 7.0.1.4, installs its files with insecure permissions (ACLs), which allows local users to gain privileges by replacing critical programs with malicious ones, as demonstrated using VetMsg.exe."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "etrust-antivirus-insecure-permissions(18502)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18502"}, {"name": "20041215 Computer Associates eTrust EZ Antivirus Insecure File Permission Vulnerability", "refsource": "IDEFENSE", "url": "http://www.idefense.com/application/poi/display?id=164"}, {"name": "http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&openparameter", "refsource": "CONFIRM", "url": "http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&openparameter"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-08T00:39:00.869Z"}, "title": "CVE Program Container", "references": [{"name": "etrust-antivirus-insecure-permissions(18502)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18502"}, {"name": "20041215 Computer Associates eTrust EZ Antivirus Insecure File Permission Vulnerability", "tags": ["third-party-advisory", "x_refsource_IDEFENSE", "x_transferred"], "url": "http://www.idefense.com/application/poi/display?id=164"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&openparameter"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2004-1149", "datePublished": "2004-12-22T05:00:00", "dateReserved": "2004-12-07T00:00:00", "dateUpdated": "2024-08-08T00:39:00.869Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:broadcom:etrust_ez_antivirus:7.0:*:*:*:*:*:*:*", "matchCriteriaId": "538F7CEC-D8A8-444F-9A9C-D1FF01EA7450", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:etrust_ez_antivirus:7.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "9DC48481-85D1-4994-A0FC-52EEB10674DC", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:etrust_ez_antivirus:7.0.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "88DEEF09-6AA0-4CF8-A628-20391E4760BF", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:etrust_ez_antivirus:7.0.1.2:*:*:*:*:*:*:*", "matchCriteriaId": "3E7B39A0-DC49-4B16-849C-A2DEB0D5266D", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:etrust_ez_antivirus:7.0.1.3:*:*:*:*:*:*:*", "matchCriteriaId": "5D8FED44-3636-4185-A04F-2A513C39BC37", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:etrust_ez_antivirus:7.0.1.4:*:*:*:*:*:*:*", "matchCriteriaId": "1C6ED59B-E249-47EF-9832-D0F61ECEA48D", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:etrust_ez_antivirus:7.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "76435176-7C11-4022-9FE2-DF67D1344219", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:etrust_ez_antivirus:7.0.2.1:*:*:*:*:*:*:*", "matchCriteriaId": "004D428A-AA27-4F6C-9486-B49826FFD267", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:etrust_ez_antivirus:7.0.3:*:*:*:*:*:*:*", "matchCriteriaId": "C296FCA2-7871-49F2-A221-B3CC38B28BFE", "vulnerable": true}, {"criteria": "cpe:2.3:a:broadcom:etrust_ez_antivirus:7.0.4:*:*:*:*:*:*:*", "matchCriteriaId": "C6F02886-32E3-44DF-A851-823F0F343D62", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Computer Associates eTrust EZ Antivirus 7.0.0 to 7.0.4, including 7.0.1.4, installs its files with insecure permissions (ACLs), which allows local users to gain privileges by replacing critical programs with malicious ones, as demonstrated using VetMsg.exe."}], "id": "CVE-2004-1149", "lastModified": "2025-04-03T01:03:51.193", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.2, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 10.0, "obtainAllPrivilege": true, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2005-01-10T05:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&openparameter"}, {"source": "cve@mitre.org", "url": "http://www.idefense.com/application/poi/display?id=164"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18502"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://crm.my-etrust.com/login.asp?username=guest&target=DOCUMENT&openparameter"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.idefense.com/application/poi/display?id=164"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/18502"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}