6 matches found
CVE-2007-2864
CVE-2007-2864 describes a stack-based buffer overflow in the Computer Associates (CA) Anti-Virus engine when processing CAB archives. The vulnerability exists in the CAB file handling prior to content update 30.6, allowing a remote attacker to execute arbitrary code by delivering a specially craf...
CVE-2009-3587
CA ARclib DoS vulnerabilities (CVE-2009-3587/3588) affect CA Anti-Virus for the Enterprise and related CA products; exploitation via crafted RAR archives can trigger heap or stack corruption and may lead to denial of service and possibly arbitrary code execution. Affected products listed include ...
CVE-2009-3588
CVE-2009-3588 (and 3587) describe a DoS vulnerability in CA’s arclib component used by CA Anti-Virus for Enterprise and related CA products. A crafted RAR archive can trigger stack corruption (CVE-3588) and heap corruption (CVE-3587); CVE-3587 also notes possible arbitrary-code execution. Affecte...
CVE-2007-3875
CVE-2007-3875 : A DoS in CA/ eTrust Antivirus products caused by arclib.dll when processing a malformed CHM file. An invalid “previous listing chunk number” in CHM triggers an infinite loop, halting antivirus functionality. Affected CA products include CA Anti-Virus for the Enterprise (formerly e...
CVE-2008-2926
CVE-2008-2926 affects the kernel driver kmxfw.sys shipped with CA Host-Based Intrusion Prevention System (HIPS) r8 (also in CA Internet Security Suite and CA Personal Firewall). The vulnerability arises from insufficient verification of IOCTL requests, allowing a local attacker to crash the syste...
CVE-2006-6496
CA vulnerability CVE-2006-6496 affects CA Anti-Virus 2007 v8.1, CA Anti-Virus for Vista Beta 8.2, and CA Internet Security Suite 2007 v3.0, due to improper handling of NULL buffers in VetMONNT.sys and VetFDDNT.sys that allows a local administrator to crash the system via certain IOCTLs. The issue...