CA Multiple Products 'arclib' Component DoS Vulnerability (Win) Network Vulnerability

Summary

This host is installed with CA Multiple Products and is prone to Denial of Service vulnerability.

Impact

Remote attackers can exploit this issue to execute arbitrary code and crash the service on affected systems via specially crafted RAR files. Impact Level: Application/System

Solution

Apply the appropriate patches. https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=218878 ***** NOTE: Ignore this warning if the above mentioned patches are already applied. *****

Insight

Multiple errors occur in the arclib component of the CA Anti-Virus engine due to improper handling of RAR files.

Affected

eTrust EZ Antivirus 7.1, CA Anti-Virus 2007 thruogh 2008, CA Internet Security Suite 2007 through Plus 2009 on Windows.

References

http://www.vupen.com/english/advisories/2009/2852
http://xforce.iss.net/xforce/xfdb/53697
http://xforce.iss.net/xforce/xfdb/53698

Updated on 2015-03-25

Severity

Classification

CVE CVE-2009-3587, CVE-2009-3588
CVSS Base Score: 9.3
AV:N/AC:M/Au:N/C:C/I:C/A:C

Related Vulnerabilities

CA kmxfw.sys Code Execution and DoS Vulnerabilities
Adobe Reader '.ETD File' Denial of Service Vulnerability (Windows)
ClamAV Denial of Service Vulnerability (Linux)
Abyss httpd DoS
Apple iTunes Malformed .mov File Buffer Overflow Vulnerability

Take action and discover your vulnerabilities