Информационная безопасность
[RU] switch to English


Многочисленные уязвимости в CA Anti-Virus
дополнено с 9 октября 2009 г.
Опубликовано:13 октября 2009 г.
Источник:
SecurityVulns ID:10305
Тип:удаленная
Уровень опасности:
6/10
Описание:Многочисленные уязвимости при разборе архивов RAR.
Затронутые продукты:CA : eTrust Intrusion Detection 3.0
 CA : CA Internet Security Suite 2007
 CA : ARCserve Backup 11.5
 CA : CA Internet Security Suite 2008
 CA : CA Protection Suites 3.1
 CA : CA Anti-Virus 7.1
 CA : CA Anti-Virus 8.1
 CA : CA Anti-Virus 2007
 CA : CA Anti-Virus 2008
 CA : CA Network and Systems Management 11.1
 CA : CA Anti-Virus 2009
 CA : CA Internet Security Suite 2009
 CA : CA Threat Manager 8.1
 CA : CA Secure Content Manager 8.0
 CA : ARCserve Backup 12.5
 CA : CA Common Services 11.1
CVE:CVE-2009-3588 (Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service via a crafted RAR archive file that triggers stack corruption, a different vulnerability than CVE-2009-3587.)
 CVE-2009-3587 (Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted RAR archive file that triggers heap corruption, a different vulnerability than CVE-2009-3588.)
Оригинальный текстdocumentThierry Zoller, [G-SEC 46-2009] Computer Associates multiple products arbritary code execution (13.10.2009)
 documentCA, CA20091008-01: Security Notice for CA Anti-Virus Engine (09.10.2009)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород