Denial of Service : CA Multiple Products 'arclib' Component DoS Vulnerability (Win)

Price/Feature Summary | Order | New Vulnerabilities | Confidentiality | Vulnerability Search

Vulnerability Search		Search 61204 CVE descriptions and 32582 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.900967

Category: Denial of Service

Title: CA Multiple Products 'arclib' Component DoS Vulnerability (Win)

Summary: Check for the version of CA Multiple Products

Description:
Overview: This host is installed with CA Multiple Products and is prone to
Denial of Service vulnerability.

Vulnerability Insight:
Multiple errors occur in the arclib component of the CA Anti-Virus engine
due to improper handling of RAR files.

Impact:
Remote attackers can exploit this issue to execute arbitrary code and
crash the service on affected systems via specially crafted RAR files.

Impact Level: Application/System

Affected Software/OS:
eTrust EZ Antivirus 7.1,
CA Anti-Virus 2007 thruogh 2008,
CA Internet Security Suite 2007 through Plus 2009 on Windows.

Fix: Apply the appropriate patches.
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=218878

*****
NOTE: Ignore this warning if the above mentioned patches are already applied.
*****

References:
http://xforce.iss.net/xforce/xfdb/53697
http://xforce.iss.net/xforce/xfdb/53698
http://www.vupen.com/english/advisories/2009/2852

Cross-Ref: BugTraq ID: 36653
Common Vulnerability Exposure (CVE) ID: CVE-2009-3587
Bugtraq: 20091009 CA20091008-01: Security Notice for CA Anti-Virus Engine (Google Search)
http://www.securityfocus.com/archive/1/archive/1/507068/100/0/threaded
http://www.securityfocus.com/bid/36653
http://osvdb.org/58691
http://www.securitytracker.com/id?1022999
http://secunia.com/advisories/36976
http://www.vupen.com/english/advisories/2009/2852
XForce ISS Database: ca-rar-code-execution(53697)
http://xforce.iss.net/xforce/xfdb/53697
Common Vulnerability Exposure (CVE) ID: CVE-2009-3588
XForce ISS Database: ca-rar-dos(53698)
http://xforce.iss.net/xforce/xfdb/53698

Copyright Copyright (C) 2009 SecPod

This is only one of 32582 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

New User Registration
Email:

UserID:

Passwd:

Please email me your monthly newsletters, informing the latest services, improvements & surveys.

Please email me a vulnerability test announcement whenever a new test is added.

Privacy

Registered User Login

UserID:

Passwd:

Forgot userid or passwd?

Email/Userid:

Test ID:	1.3.6.1.4.1.25623.1.0.900967
Category:	Denial of Service
Title:	CA Multiple Products 'arclib' Component DoS Vulnerability (Win)
Summary:	Check for the version of CA Multiple Products
Description:	Overview: This host is installed with CA Multiple Products and is prone to Denial of Service vulnerability. Vulnerability Insight: Multiple errors occur in the arclib component of the CA Anti-Virus engine due to improper handling of RAR files. Impact: Remote attackers can exploit this issue to execute arbitrary code and crash the service on affected systems via specially crafted RAR files. Impact Level: Application/System Affected Software/OS: eTrust EZ Antivirus 7.1, CA Anti-Virus 2007 thruogh 2008, CA Internet Security Suite 2007 through Plus 2009 on Windows. Fix: Apply the appropriate patches. https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=218878 *** NOTE: Ignore this warning if the above mentioned patches are already applied. *** References: http://xforce.iss.net/xforce/xfdb/53697 http://xforce.iss.net/xforce/xfdb/53698 http://www.vupen.com/english/advisories/2009/2852
Cross-Ref:	BugTraq ID: 36653 Common Vulnerability Exposure (CVE) ID: CVE-2009-3587 Bugtraq: 20091009 CA20091008-01: Security Notice for CA Anti-Virus Engine (Google Search) http://www.securityfocus.com/archive/1/archive/1/507068/100/0/threaded http://www.securityfocus.com/bid/36653 http://osvdb.org/58691 http://www.securitytracker.com/id?1022999 http://secunia.com/advisories/36976 http://www.vupen.com/english/advisories/2009/2852 XForce ISS Database: ca-rar-code-execution(53697) http://xforce.iss.net/xforce/xfdb/53697 Common Vulnerability Exposure (CVE) ID: CVE-2009-3588 XForce ISS Database: ca-rar-dos(53698) http://xforce.iss.net/xforce/xfdb/53698
Copyright	Copyright (C) 2009 SecPod