CVE-2009-0042

Severity

99%

Complexity

99%

Confidentiality

165%

Multiple unspecified vulnerabilities in the Arclib library (arclib.dll) before 7.3.0.15 in the CA Anti-Virus engine for CA Anti-Virus for the Enterprise 7.1, r8, and r8.1; Anti-Virus 2007 v8 and 2008; Internet Security Suite 2007 v3 and 2008; and other CA products allow remote attackers to bypass virus detection via a malformed archive file.

Multiple unspecified vulnerabilities in the Arclib library (arclib.dll) before 7.3.0.15 in the CA Anti-Virus engine for CA Anti-Virus for the Enterprise 7.1, r8, and r8.1; Anti-Virus 2007 v8 and 2008; Internet Security Suite 2007 v3 and 2008; and other CA products allow remote attackers to bypass virus detection via a malformed archive file.

CVSS 2.0 Base Score 9.9. CVSS Attack Vector: network. CVSS Attack Complexity: low. CVSS Vector: (AV:N/AC:L/Au:N/C:C/I:C/A:C).

Overview

Type

Computer Associates

First reported 16 years ago

2009-01-28 01:30:00

Last updated 6 years ago

2018-10-30 16:25:00

Affected Software

Computer Associates Anti-spyware 2007

2007

Computer Associates Anti-spyware 2008

2008

Computer Associates Anti-spyware For The Enterprise 8.1

8.1

Computer Associates Anti-spyware For The Enterprise r8

r8

Computer Associates Anti-virus 2007 8

2007

Computer Associates Anti-virus 2008

2008

Computer Associates Anti-Virus for the Enterprise 7.1

7.1

Computer Associates Anti-Virus for the Enterprise r8.1

8.1

Computer Associates Anti-Virus for the Enterprise r8

r8

Computer Associates Anti-virus SDK

Computer Associates Antivirus Gateway 7.1

7.1

Computer Associates Client Agent Windows

Computer Associates common services r11

11

Computer Associates common services r11.1

11.1

Computer Associates eTrust EZ Antivirus r6.1

r6.1

Computer Associates eTrust EZ Antivirus r7

r7

Computer Associates eTrust Intrusion Detection 3.0

3.0

Computer Associates eTrust Intrusion Detection 4.0

4.0

Computer Associates Network and Systems Management r3.0

r3.0

Computer Associates Network and Systems Management r3.1

r3.1

Computer Associates Network and Systems Management r11

r11

Computer Associates Network and Systems Management r11.1

r11.1

Computer Associates Secure Content Manager 8.0

8.0

Computer Associates Secure Content Manager 8.1

8.1

References

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/26/ca20090126-01-ca-anti-virus-engine-detection-evasion-multiple-vulnerabilities.aspx

Vendor Advisory

http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197601

20090127 CA20090126-01: CA Anti-Virus Engine Detection Evasion Multiple Vulnerabilities

33464

1021639

ADV-2009-0270

ca-antivirus-engine-security-bypass(48261)

Stay updated

ExploitPedia is constantly evolving. Sign up to receive a notification when we release additional functionality.

Get in touch

If you'd like to report a bug or have any suggestions for improvements then please do get in touch with us using this form. We will get back to you as soon as we can.