CVE Vulnerabilities

CVE-2007-2864

Published: Jun 06, 2007 | Modified: Apr 14, 2021
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a large invalid value of the coffFiles field in a .CAB file.

Affected Software

Name Vendor Start Version End Version
Etrust_secure_content_manager Ca 8.0 8.0
Protection_suites Ca r3 r3
Protection_suites Ca r2 r2
Anti-virus_for_the_enterprise Broadcom 8 8
Brightstor_arcserve_backup Broadcom 10.5 10.5
Brightstor_arcserve_backup Broadcom 11.5 11.5
Brightstor_arcserve_backup Broadcom 11 11
Brightstor_arcserve_backup Broadcom 11.1 11.1
Brightstor_arcserve_backup Broadcom 9.01 9.01
Common_services Broadcom 1.0 1.0
Common_services Broadcom 1.1 1.1
Common_services Broadcom 2.0 2.0
Common_services Broadcom 2.1 2.1
Common_services Broadcom 2.2 2.2
Common_services Broadcom 3.0 3.0
Etrust_antivirus Broadcom 8.0 8.0
Etrust_antivirus Broadcom 8.1 8.1
Etrust_antivirus_sdk Broadcom * *
Etrust_antivirus_gateway Broadcom 7.1 7.1
Etrust_ez_antivirus Broadcom 6.1 6.1
Etrust_ez_antivirus Broadcom 7.0 7.0
Etrust_ez_armor Broadcom 1.0 1.0
Etrust_ez_armor Broadcom 2.0 2.0
Etrust_ez_armor Broadcom 3.0 3.0
Etrust_ez_armor Broadcom 3.1 3.1
Integrated_threat_management Broadcom 8.0 8.0
Internet_security_suite Broadcom 1.0 1.0
Internet_security_suite Broadcom 2.0 2.0
Internet_security_suite Broadcom 3.0 3.0
Unicenter_network_and_systems_management Broadcom 3.0 3.0
Unicenter_network_and_systems_management Broadcom 3.1 3.1
Unicenter_network_and_systems_management Broadcom 11 11
Unicenter_network_and_systems_management Broadcom 11.1 11.1

References