4 matches found
KLA10094 DoS vulnerabilities in CA products
An unspecified vulnerability was found in CA products. By exploiting this vulnerability malicious users can cause denial of service or possibly execute arbitrary code. This vulnerability can be exploited from the network at a point related to arclib via a specially designed RAR archive. Original...
Computer Associates Anti-Virus Engine arclib.dll < 8.1.4.0 Multiple Flaws
The antivirus engine from Computer Associates installed on the remote host is affected by multiple vulnerabilities : - Due to improper handling of certain specially crafted RAR files it may be possible for a remote attacker to trigger a heap overflow or denial of service condition. CVE-2009-3587 ...
CA杀毒引擎arclib库多个内存破坏漏洞
BUGTRAQ ID: 36653 CVE ID: CVE-2009-3587,CVE-2009-3588 Computer Associates是世界领先的安全厂商,产品包括多种杀毒软件及备份恢复系统。 多个CA产品杀毒引擎所使用的arclib组件在解析畸形RAR压缩文件时存在堆或栈内存破坏,用户受骗打开恶意文件就会导致拒绝服务或执行任意指令。 Computer Associates eTrust Intrusion Detection 3.0 SP1 Computer Associates eTrust Intrusion Detection 3.0 Computer...
CA20091008-01: Security Notice for CA Anti-Virus Engine
CA20091008-01: Security Notice for CA Anti-Virus Engine Issued: October 8, 2009 CA's support is alerting customers to multiple security risks associated with CA Anti-Virus Engine. Vulnerabilities exist in the arclib component that can allow a remote attacker to cause a denial of service, or to...