CVE-2007-3875
First published: Thu Jul 26 2007(Updated: )
arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) 8 and certain other CA products allows remote attackers to cause a denial of service (infinite loop and loss of antivirus functionality) via an invalid "previous listing chunk number" field in a CHM file.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Broadcom Anti-Spyware for the Enterprise | =2007 | |
| Broadcom Anti-Virus for the Enterprise | <=8 | |
| Broadcom Anti-Virus for the Enterprise | =7.0 | |
| Broadcom Anti-Virus for the Enterprise | =7.1 | |
| Broadcom Anti-Virus for the Enterprise | =8 | |
| Broadcom Anti-Virus for the Enterprise | =8.1 | |
| Broadcom Antivirus SDK | ||
| Broadcom Anti-Spyware for the Enterprise | =8 | |
| Broadcom Anti-Spyware for the Enterprise | =8.1 | |
| Broadcom Anti-Virus SDK | ||
| Broadcom BrightStor ARCServe Backup | =9.01 | |
| Broadcom BrightStor ARCServe Backup | =11.1 | |
| Broadcom BrightStor ARCServe Backup | =11.5 | |
| CA ARCserve for Windows Client Agent | ||
| Broadcom BrightStor Enterprise Backup | =10.5 | |
| Broadcom BrightStor ARCserve Client | ||
| broadcom common services | =11 | |
| broadcom common services | =11.1 | |
| Broadcom eTrust Antivirus | =8 | |
| Broadcom eTrust Antivirus | =7.1 | |
| Broadcom eTrust EZ Antivirus | =6.1 | |
| Broadcom eTrust EZ Antivirus | =7 | |
| Broadcom eTrust EZ Armor | =1 | |
| Broadcom eTrust EZ Armor | =2 | |
| Broadcom eTrust EZ Armor | =3 | |
| Broadcom Internet Security Suite | =1 | |
| Broadcom Internet Security Suite | =2 | |
| Broadcom eTrust Intrusion Detection | =2.0 | |
| Broadcom eTrust Intrusion Detection | =3.0 | |
| Broadcom Internet Security Suite | =3.0 | |
| Broadcom Secure Content Manager | =1.1 | |
| Broadcom Secure Content Manager | =8.0 | |
| Broadcom CA Threat Manager | =8 | |
| Broadcom Unicenter Network and Systems Management | =3.0 | |
| Broadcom Unicenter Network and Systems Management | =3.1 | |
| Broadcom Unicenter Network and Systems Management | =11 | |
| Broadcom Unicenter Network and Systems Management | =11.1 | |
| Broadcom BrightStor ARCServe Backup | =11 | |
| Broadcom eTrust Intrusion Detection | =3.0-sp1 | |
| CA Protection Suites | =r2 | |
| CA Protection Suites | =r3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=567
- http://supportconnectw.ca.com/public/antivirus/infodocs/caprodarclib-secnot.asp
- http://www.securityfocus.com/bid/25049
- http://secunia.com/advisories/26155
- http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149847
- http://www.securitytracker.com/id?1018450
- http://www.vupen.com/english/advisories/2007/2639
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35573
- http://www.securityfocus.com/archive/1/474683/100/0/threaded
- http://www.securityfocus.com/archive/1/474605/100/100/threaded
- http://www.securityfocus.com/archive/1/474601/100/0/threaded
- agent/remedy
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/author
- agent/references
- agent/first-publish-date
- agent/severity
- agent/description
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/broadcom
- canonical/broadcom anti-spyware for the enterprise
- version/broadcom anti-spyware for the enterprise/2007
- canonical/broadcom anti-virus for the enterprise
- version/broadcom anti-virus for the enterprise/8
- version/broadcom anti-virus for the enterprise/7.0
- version/broadcom anti-virus for the enterprise/7.1
- version/broadcom anti-virus for the enterprise/8.1
- canonical/broadcom antivirus sdk
- version/broadcom anti-spyware for the enterprise/8
- version/broadcom anti-spyware for the enterprise/8.1
- canonical/broadcom anti-virus sdk
- canonical/broadcom brightstor arcserve backup
- version/broadcom brightstor arcserve backup/9.01
- version/broadcom brightstor arcserve backup/11.1
- version/broadcom brightstor arcserve backup/11.5
- canonical/ca arcserve for windows client agent
- canonical/broadcom brightstor enterprise backup
- version/broadcom brightstor enterprise backup/10.5
- canonical/broadcom brightstor arcserve client
- canonical/broadcom common services
- version/broadcom common services/11
- version/broadcom common services/11.1
- canonical/broadcom etrust antivirus
- version/broadcom etrust antivirus/8
- version/broadcom etrust antivirus/7.1
- canonical/broadcom etrust ez antivirus
- version/broadcom etrust ez antivirus/6.1
- version/broadcom etrust ez antivirus/7
- canonical/broadcom etrust ez armor
- version/broadcom etrust ez armor/1
- version/broadcom etrust ez armor/2
- version/broadcom etrust ez armor/3
- canonical/broadcom internet security suite
- version/broadcom internet security suite/1
- version/broadcom internet security suite/2
- canonical/broadcom etrust intrusion detection
- version/broadcom etrust intrusion detection/2.0
- version/broadcom etrust intrusion detection/3.0
- version/broadcom internet security suite/3.0
- canonical/broadcom secure content manager
- version/broadcom secure content manager/1.1
- version/broadcom secure content manager/8.0
- canonical/broadcom ca threat manager
- version/broadcom ca threat manager/8
- canonical/broadcom unicenter network and systems management
- version/broadcom unicenter network and systems management/3.0
- version/broadcom unicenter network and systems management/3.1
- version/broadcom unicenter network and systems management/11
- version/broadcom unicenter network and systems management/11.1
- vendor/ca
- version/broadcom brightstor arcserve backup/11
- version/broadcom etrust intrusion detection/3.0-sp1
- canonical/ca protection suites
- version/ca protection suites/r2
- version/ca protection suites/r3