Vulnerability CVE-2009-3588


Published: 2009-10-13   Modified: 2012-02-13

Description:
Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service via a crafted RAR archive file that triggers stack corruption, a different vulnerability than CVE-2009-3587.

See advisories in our WLB2 database:
Topic
Author
Date
High
Security Notice for CA Anti-Virus Engine
Williams, James ...
14.10.2009

Type:

CWE-noinfo

Vendor: CA
Product: Anti-virus for the enterprise 
Version:
r8.1
r8
7.1
Product: Gateway security 
Version: r8.1;
Product: Threat manager 
Version: r8; 8.1;
Product: Etrust ez antivirus 
Version: r7.1;
Product: Network and systems management 
Version:
r3.1
r3.0
r11.1
r11
Product: Protection suites 
Version:
r3.1
r3
r2
Product: Arcserve backup 
Version:
r12.5
r12.0
r11.5
r11.1
Product: Etrust antivirus 
Version:
8.1
8
7.1
Product: Etrust integrated threat management 
Version: 8.1;
Product: Etrust secure content manager 
Version: 8.0; 1.1;
Product: Secure content manager 
Version: 8.0; 1.1;
Product: Anti-virus gateway 
Version: 7.1;
Product: Etrust anti-virus gateway 
Version: 7.1;
Product: Common services 
Version:
3.1
11.1
11
Product: Unicenter network and systems management 
Version:
3.1
3.0
11.1
11
Product: Etrust intrusion detection 
Version: 3.0; 2.0;
Product: Internet security suite 
Version: 3.0;
Product: Anti-virus plus 
Version: 2009;
Product: Anti-virus 
Version:
2009
2008
2007
Product: Internet security suite plus 2008 
Product: Etrust anti-virus sdk 
Product: Arcserve for windows server component 
Product: Internet security suite 2008 
Product: Internet security suite plus 2009 
Product: Arcserve for windows client agent 
Product: Threat manager total defense 
Product: Anti-virus sdk 

CVSS2 => (AV:N/AC:M/Au:N/C:N/I:N/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
4.3/10
2.9/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
None
None
Partial

 References:
http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=218878
http://www.securityfocus.com/archive/1/507068/100/0/threaded
http://www.securityfocus.com/bid/36653
http://www.securitytracker.com/id?1022999
http://www.vupen.com/english/advisories/2009/2852
https://exchange.xforce.ibmcloud.com/vulnerabilities/53698

Related CVE
CVE-2019-13658
CA Network Flow Analysis 9.x and 10.0.x have a default credential vulnerability that can allow a remote attacker to execute arbitrary commands and compromise system security.
CVE-2019-7394
A privilege escalation vulnerability in the administrative user interface of CA Technologies CA Strong Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 7.1.x and CA Risk Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 3.1.x allows an authenticated attacker to g...
CVE-2019-7393
A UI redress vulnerability in the administrative user interface of CA Technologies CA Strong Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 7.1.x and CA Risk Authentication 9.0.x, 8.2.x, 8.1.x, 8.0.x, 3.1.x may allow a remote attacker to gain sensitive i...
CVE-2019-7392
An improper authentication vulnerability in CA Privileged Access Manager 3.x Web-UI jk-manager and jk-status allows a remote attacker to gain sensitive information or alter configuration.
CVE-2018-19635
CA Service Desk Manager 14.1 and 17 contain a vulnerability that can allow a malicious actor to escalate privileges in the user interface.
CVE-2018-19634
CA Service Desk Manager 14.1 and 17 contain a vulnerability that can allow a malicious actor to access survey information.
CVE-2018-13826
An XML external entity vulnerability in the XOG functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to conduct server side request forgery attacks.
CVE-2018-13825
Insufficient input validation in the gridExcelExport functionality, in CA PPM 14.3 and below, 14.4, 15.1, 15.2 CP5 and below, and 15.3 CP2 and below, allows remote attackers to execute reflected cross-site scripting attacks.

Copyright 2019, cxsecurity.com

 

Back to Top