Description
Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a long filename in a .CAB file.
Affected products
- Broadcom / anti-virus_for_the_enterprise8 – 8
- Broadcom / brightstor_arcserve_backup9.01 – 9.01
- Broadcom / brightstor_arcserve_backup11.1 – 11.1
- Broadcom / brightstor_arcserve_backup11.5 – 11.5
- Broadcom / brightstor_enterprise_backup10.5 – 10.5
- Broadcom / common_services1.0 – 1.0
- Broadcom / common_services1.1 – 1.1
- Broadcom / common_services2.0 – 2.0
- Broadcom / common_services2.1 – 2.1
- Broadcom / common_services2.2 – 2.2
- Broadcom / common_services3.0 – 3.0
- ca / anti-virus_for_the_enterprise8 – 8
- ca / brightstor_arcserve_backup11 – 11
References
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/34741
- MISChttp://securityreason.com/securityalert/2790
- MISChttp://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-securitynotice.asp
- MISChttp://www.securityfocus.com/archive/1/470601/100/0/threaded
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2007/2072
- MISChttp://www.securityfocus.com/bid/24331
- MISChttp://www.securityfocus.com/archive/1/470754/100/0/threaded
- MISChttp://www.osvdb.org/35244
- MISChttp://www.securitytracker.com/id?1018199
- VENDOR_ADVISORYhttp://www.zerodayinitiative.com/advisories/ZDI-07-034.html
- MISChttp://www.kb.cert.org/vuls/id/739409
- VENDOR_ADVISORYhttp://secunia.com/advisories/25570