Lucene search

[email protected]CVE-2007-3875

HistoryJul 26, 2007 - 12:30 a.m.

CVE-2007-3875

2007-07-2600:30:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

ca anti-virus

etrust antivirus

denial of service

cve-2007-3875

nvd

arclib.dll

6.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.468 Medium

EPSS

Percentile

97.4%

JSON

arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) 8 and certain other CA products allows remote attackers to cause a denial of service (infinite loop and loss of antivirus functionality) via an invalid “previous listing chunk number” field in a CHM file.

CPENameOperatorVersion
ca:protection_suitesca protection suiteseqr3
ca:etrust_intrusion_detectionca etrust intrusion detectioneq3.0
ca:brightstor_arcserve_backupca brightstor arcserve backupeq11
ca:protection_suitesca protection suiteseqr2
broadcom:anti-spywarebroadcom anti-spywareeq2007
broadcom:anti-virus_for_the_enterprisebroadcom anti-virus for the enterprisele8
broadcom:antivirus_sdkbroadcom antivirus sdkeq*
broadcom:anti_virus_sdkbroadcom anti virus sdkeq*
broadcom:anti-virus_for_the_enterprisebroadcom anti-virus for the enterpriseeq7.0
broadcom:anti-virus_for_the_enterprisebroadcom anti-virus for the enterpriseeq7.1

CPE	Name	Operator	Version
ca:protection_suites	ca protection suites	eq	r3
ca:etrust_intrusion_detection	ca etrust intrusion detection	eq	3.0
ca:brightstor_arcserve_backup	ca brightstor arcserve backup	eq	11
ca:protection_suites	ca protection suites	eq	r2
broadcom:anti-spyware	broadcom anti-spyware	eq	2007
broadcom:anti-virus_for_the_enterprise	broadcom anti-virus for the enterprise	le	8
broadcom:antivirus_sdk	broadcom antivirus sdk	eq	*
broadcom:anti_virus_sdk	broadcom anti virus sdk	eq	*
broadcom:anti-virus_for_the_enterprise	broadcom anti-virus for the enterprise	eq	7.0
broadcom:anti-virus_for_the_enterprise	broadcom anti-virus for the enterprise	eq	7.1

Rows per page:

1-10 of 401

References

labs.idefense.com/intelligence/vulnerabilities/display.php?id=567

secunia.com/advisories/26155

supportconnectw.ca.com/public/antivirus/infodocs/caprodarclib-secnot.asp

www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149847

www.securityfocus.com/archive/1/474601/100/0/threaded

www.securityfocus.com/archive/1/474605/100/100/threaded

www.securityfocus.com/archive/1/474683/100/0/threaded

www.securityfocus.com/bid/25049

www.securitytracker.com/id?1018450

www.vupen.com/english/advisories/2007/2639

exchange.xforce.ibmcloud.com/vulnerabilities/35573

Social References

6.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.468 Medium

EPSS

Percentile

97.4%

JSON

Related for CVE-2007-3875

checkpoint_advisories1 securityvulns3 prion1 seebug1