CVE-2007-2863

Severity

99%

Complexity

99%

Confidentiality

165%

Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a long filename in a .CAB file.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

Computer Associates

First reported 17 years ago

2007-06-06 21:30:00

Last updated 6 years ago

2018-10-16 16:45:00

Affected Software

Computer Associates Anti-Virus for the Enterprise r8

8

Computer Associates BrightStor ARCserve Backup 9.01

9.01

Computer Associates BrightStor ARCserve Backup 11.1

11.1

Computer Associates BrightStor ARCserve Backup 11.5

11.5

Computer Associates BrightStor Enterprise Backup 10.5

10.5

Computer Associates Common Services 1.0

1.0

Computer Associates Common Services 1.1

1.1

Computer Associates Common Services 2.0

2.0

Computer Associates Common Services 2.1

2.1

Computer Associates Common Services 2.2

2.2

Computer Associates Common Services 3.0

3.0

References

25570

Patch, Vendor Advisory

2790

http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-securitynotice.asp

VU#739409

US Government Resource

35244

20070605 ZDI-07-034: CA Multiple Product AV Engine CAB Filename Parsing Stack Overflow Vulnerability

20070607 [CAID 35395, 35396]: CA Anti-Virus Engine CAB File Buffer Overflow Vulnerabilities

24331

Patch

1018199

ADV-2007-2072

http://www.zerodayinitiative.com/advisories/ZDI-07-034.html

ca-multiple-antivirus-cab-bo(34741)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.