Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2009-0042

Multiple unspecified vulnerabilities in the Arclib library (arclib.dll) before 7.3.0.15 in the CA Anti-Virus engine for CA Anti-Virus for the Enterprise 7.1, r8, and r8.1; Anti-Virus 2007 v8 and 2008; Internet Security Suite 2007 v3 and 2008; and other CA products allow remote attackers to bypass virus detection via a malformed archive file.

Published

2009-01-28T01:30:00.453

Last Modified

2025-04-09T00:30:58.490

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 10.0 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

10.0

Impact Score

10.0

Weaknesses

Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	broadcom	anti-spyware	2007	Yes
Application	broadcom	anti-spyware	2008	Yes
Application	broadcom	anti-spyware_for_the_enterprise	8.1	Yes
Application	broadcom	anti-spyware_for_the_enterprise	r8	Yes
Application	broadcom	anti-virus	2007	Yes
Application	broadcom	anti-virus	2008	Yes
Application	broadcom	anti-virus_for_the_enterprise	7.1	Yes
Application	broadcom	anti-virus_for_the_enterprise	8.1	Yes
Application	broadcom	anti-virus_for_the_enterprise	r8	Yes
Application	broadcom	anti-virus_sdk	*	Yes
Application	broadcom	antivirus_gateway	7.1	Yes
Application	broadcom	arcserve_client_agent	-	Yes
Application	broadcom	common_services	11	Yes
Application	broadcom	common_services	11.1	Yes
Application	broadcom	etrust_ez_antivirus	r6.1	Yes
Application	broadcom	etrust_ez_antivirus	r7	Yes
Application	broadcom	etrust_intrusion_detection	3.0	Yes
Application	broadcom	etrust_intrusion_detection	4.0	Yes
Application	broadcom	network_and_systems_management	r3.0	Yes
Application	broadcom	network_and_systems_management	r3.1	Yes
Application	broadcom	network_and_systems_management	r11	Yes
Application	broadcom	network_and_systems_management	r11.1	Yes
Application	broadcom	secure_content_manager	8.0	Yes
Application	broadcom	secure_content_manager	8.1	Yes
Application	ca	arcserve_backup	r11.1	Yes
Application	ca	arcserve_backup	r11.1	Yes
Application	ca	arcserve_backup	r11.5_nil_	Yes
Application	ca	arcserve_backup	r11.5_nil_	Yes
Application	ca	arcserve_backup	r12.0_nil_	Yes
Application	ca	etrust_intrusion_detection	2.0	Yes
Application	ca	etrust_intrusion_detection	3.0	Yes
Application	ca	internet_security_suite_2007	3	Yes
Application	ca	internet_security_suite_2008	*	Yes
Application	ca	internet_security_suite_plus_2008	*	Yes
Application	ca	protection_suites	r2	Yes
Application	ca	protection_suites	r3	Yes
Application	ca	protection_suites	r3.1	Yes
Application	ca	threat_manager_for_the_enterprise	8.1	Yes
Application	ca	threat_manager_for_the_enterprise	r8	Yes

References

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/26/ca20090126-01-ca-anti-virus-engine-detection-evasion-multiple-vulnerabilities.aspx Vendor Advisory ([email protected])
http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197601 ([email protected])
http://www.securityfocus.com/archive/1/500417/100/0/threaded ([email protected])
http://www.securityfocus.com/bid/33464 ([email protected])
http://www.securitytracker.com/id?1021639 ([email protected])
http://www.vupen.com/english/advisories/2009/0270 ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/48261 ([email protected])
http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/26/ca20090126-01-ca-anti-virus-engine-detection-evasion-multiple-vulnerabilities.aspx Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197601 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/archive/1/500417/100/0/threaded (af854a3a-2127-422b-91ae-364da2661108)
http://www.securityfocus.com/bid/33464 (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id?1021639 (af854a3a-2127-422b-91ae-364da2661108)
http://www.vupen.com/english/advisories/2009/0270 (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/48261 (af854a3a-2127-422b-91ae-364da2661108)