4 matches found
CVE-2009-3587
CA ARclib DoS vulnerabilities (CVE-2009-3587/3588) affect CA Anti-Virus for the Enterprise and related CA products; exploitation via crafted RAR archives can trigger heap or stack corruption and may lead to denial of service and possibly arbitrary code execution. Affected products listed include ...
CVE-2009-3588
CVE-2009-3588 (and 3587) describe a DoS vulnerability in CA’s arclib component used by CA Anti-Virus for Enterprise and related CA products. A crafted RAR archive can trigger stack corruption (CVE-3588) and heap corruption (CVE-3587); CVE-3587 also notes possible arbitrary-code execution. Affecte...
CVE-2011-0758
CA ETrust Secure Content Manager (eCS ECSQdmn.exe) vulnerable to remote code execution via port 1882 due to a heap overflow caused by an improper DWORD value in a memory copy. Affected products: CA ETrust Secure Content Manager 8.0 and CA Gateway Security 8.1. Exploitation is unauthenticated and ...
CVE-2011-2667
CA Gateway Security (and CA Total Defense r12) is affected by CVE-2011-2667 due to a flawed URL parsing loop in the Icihttp.exe module, which can overflow heap memory on HTTP requests received on port 8080. This memory corruption can enable remote attackers to execute arbitrary code or trigger a ...