Lucene search

[email protected]NVD:CVE-2009-3587

HistoryOct 13, 2009 - 10:30 a.m.

CVE-2009-3587

2009-10-1310:30:00

[email protected]

web.nvd.nist.gov

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.204 Low

EPSS

Percentile

96.4%

JSON

Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted RAR archive file that triggers heap corruption, a different vulnerability than CVE-2009-3588.

Affected configurations

NVD

Node

broadcomanti-virusMatch20078

broadcomanti-virusMatch2008

broadcomanti-virus_for_the_enterpriseMatch7.1

broadcomanti-virus_for_the_enterpriseMatchr8

broadcomanti-virus_sdk

broadcomcommon_servicesMatch11

broadcomcommon_servicesMatch11.1

broadcometrust_antivirusMatch7.1

broadcometrust_antivirusMatch8

broadcometrust_antivirusMatch8.1

broadcometrust_integrated_threat_managementMatch8.1

broadcometrust_intrusion_detectionMatch3.0

broadcometrust_secure_content_managerMatch1.1

broadcominternet_security_suite

broadcominternet_security_suiteMatch3.0

broadcomnetwork_and_systems_managementMatchr3.0

broadcomnetwork_and_systems_managementMatchr3.1

broadcomnetwork_and_systems_managementMatchr11

broadcomnetwork_and_systems_managementMatchr11.1

broadcomsecure_content_managerMatch1.1

broadcomsecure_content_managerMatch8.0

broadcomunicenter_network_and_systems_managementMatch3.0

broadcomunicenter_network_and_systems_managementMatch3.1

broadcomunicenter_network_and_systems_managementMatch11

broadcomunicenter_network_and_systems_managementMatch11.1

caanti-virusMatch2009

caanti-virus_for_the_enterpriseMatchr8.1

caanti-virus_gatewayMatch7.1

caanti-virus_plusMatch2009

caarcserve_backupMatchr11.5

caarcserve_for_windows_client_agent

caarcserve_for_windows_server_component

cacommon_servicesMatch3.1

caetrust_anti-virus_gatewayMatch7.1

caetrust_anti-virus_sdk

caetrust_ez_antivirusMatchr7.1

caetrust_intrusion_detectionMatch2.0sp1

caetrust_intrusion_detectionMatch3.0sp1

caetrust_secure_content_managerMatch8.0

cagateway_securityMatchr8.1

cainternet_security_suite_2008

cainternet_security_suite_plus_2008

cainternet_security_suite_plus_2009

caprotection_suitesMatchr2

caprotection_suitesMatchr3

caprotection_suitesMatchr3.1

cathreat_managerMatch8.1enterprise

cathreat_managerMatchr8enterprise

cathreat_manager_total_defense

Node

caarcserve_backupMatchr11.1

caarcserve_backupMatchr11.5

AND

linuxlinux_kernelMatch-

References

osvdb.org/58691

secunia.com/advisories/36976

support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=218878

www.securityfocus.com/archive/1/507068/100/0/threaded

www.securityfocus.com/bid/36653

www.securitytracker.com/id?1022999

www.vupen.com/english/advisories/2009/2852

exchange.xforce.ibmcloud.com/vulnerabilities/53697

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

7.5 High

AI Score

Confidence

Low

0.204 Low

EPSS

Percentile

96.4%

JSON

Related for NVD:CVE-2009-3587

securityvulns3 cvelist2 cve2 openvas2 nvd1 kaspersky1 seebug1 nessus1 prion2