CVSS: 9.3EPSS: 8%CPEs: 52EXPL: 0CVE-2009-3587
https://notcve.org/view.php?id=CVE-2009-3587
13 Oct 2009 — Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted RAR archive file that triggers heap corruption, a different vulnerability than CVE-2009-3588. Vulnerabilidad no espe... • http://osvdb.org/58691 •
CVSS: 5.5EPSS: 1%CPEs: 55EXPL: 0CVE-2009-3588
https://notcve.org/view.php?id=CVE-2009-3588
13 Oct 2009 — Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service via a crafted RAR archive file that triggers stack corruption, a different vulnerability than CVE-2009-3587. Vulnerabilidad inespecífica en el componente arclib en el... • http://secunia.com/advisories/36976 •
CVSS: 10.0EPSS: 1%CPEs: 39EXPL: 0CVE-2009-0042
https://notcve.org/view.php?id=CVE-2009-0042
28 Jan 2009 — Multiple unspecified vulnerabilities in the Arclib library (arclib.dll) before 7.3.0.15 in the CA Anti-Virus engine for CA Anti-Virus for the Enterprise 7.1, r8, and r8.1; Anti-Virus 2007 v8 and 2008; Internet Security Suite 2007 v3 and 2008; and other CA products allow remote attackers to bypass virus detection via a malformed archive file. Múltiples vulnerabilidades sin especificar en la bilioteca Arclib (arclib.dll) anterior a v 7.3.0.15 en el motor de CA Anti-Virus para CA Anti-Virus Enterprise v7.1, r8... • http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/26/ca20090126-01-ca-anti-virus-engine-detection-evasion-multiple-vulnerabilities.aspx •
CVSS: 6.2EPSS: 2%CPEs: 41EXPL: 0CVE-2007-3875
https://notcve.org/view.php?id=CVE-2007-3875
26 Jul 2007 — arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) 8 and certain other CA products allows remote attackers to cause a denial of service (infinite loop and loss of antivirus functionality) via an invalid "previous listing chunk number" field in a CHM file. arclib.dll anterior a 7.3.0.9 en CA Anti-Virus (formalmente eTrust Antivirus) 8 y otros ciertos productos CA permiten a atacantes remotos provocar denegación de servicio (bucles infinitos y perdida de funcionalidad antivirus) a través d... • http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=567 •
CVSS: 9.8EPSS: 81%CPEs: 33EXPL: 1CVE-2007-2864 – CA Multiple Product AV Engine CAB Header Parsing Stack Overflow Vulnerability
https://notcve.org/view.php?id=CVE-2007-2864
05 Jun 2007 — Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a large invalid value of the coffFiles field in a .CAB file. Desbordamiento de búfer basado en pila en el motor antivirus anterior a la actualización de contenido 30.6 de múltiples productos CA (antiguamente Computer Associates) permite a atacantes remotos ejecutar código de su elección mediante un valor largo no válido d... • https://www.exploit-db.com/exploits/16677 •
CVSS: 6.6EPSS: 0%CPEs: 3EXPL: 0CVE-2006-6496
https://notcve.org/view.php?id=CVE-2006-6496
13 Dec 2006 — The (1) VetMONNT.sys and (2) VetFDDNT.sys drivers in CA Anti-Virus 2007 8.1, Anti-Virus for Vista Beta 8.2, and CA Internet Security Suite 2007 v3.0 do not properly handle NULL buffers, which allows local users with administrative access to cause a denial of service (system crash) via certain IOCTLs. Los controladores de dispositivo (1) VetMONNT.sys y (2) VetFDDNT.sys de CA Anti-Virus 2007 8.1, Anti-Virus para Vista Beta 8.2 y CA Internet Security Suite 2007 v3.0 no gestionan apropiadamente búferes Null, lo... • http://crm.my-etrust.com/CIDocument.asp?KDId=2651&GUID=9FD7E4F8362C4A168D88B4FFA34DCB4C •
CVSS: 9.8EPSS: 2%CPEs: 1EXPL: 0CVE-2006-3975
https://notcve.org/view.php?id=CVE-2006-3975
04 Aug 2006 — Unspecified vulnerability in CA eTrust Antivirus WebScan allows remote attackers to execute arbitrary code due to "improper bounds checking when processing certain user input." Vulnerabilidad no especificada en CA eTrust Antivirus WebScan permite a atacantes remotos ejecutar código de su elección a través debido a "compruebam límites incorrectos al procesar cierta entrada de usuario". • http://secunia.com/advisories/21320 •
CVSS: 9.3EPSS: 1%CPEs: 1EXPL: 0CVE-2006-3976
https://notcve.org/view.php?id=CVE-2006-3976
04 Aug 2006 — Unspecified vulnerability in CA eTrust Antivirus WebScan before 1.1.0.1048 allows remote attackers to install arbitrary files. Vulnerabilidad no especificada en CA eTrust Antivirus WebScan anterior a 1.1.0.1048 permite a atacantes remotos intalar archivos de su elección. • http://secunia.com/advisories/21320 •
CVSS: 9.8EPSS: 1%CPEs: 2EXPL: 0CVE-2006-3977
https://notcve.org/view.php?id=CVE-2006-3977
04 Aug 2006 — Unspecified vulnerability in CA eTrust Antivirus WebScan before 1.1.0.1048 has unknown impact and remote attackers related to "improper processing of outdated WebScan components." Vulnerabildiad no especificada en CA eTrust Antivirus WebScan anterio a 1.1.0.1048 tiene un impacto desconocido y ataques remotos relacionados con "procedimientos impropios de componentes fuera WebScan fuera de fecha". • http://secunia.com/advisories/21320 •
CVSS: 9.8EPSS: 1%CPEs: 3EXPL: 0CVE-2006-3223
https://notcve.org/view.php?id=CVE-2006-3223
27 Jun 2006 — Format string vulnerability in CA Integrated Threat Management (ITM), eTrust Antivirus (eAV), and eTrust PestPatrol (ePP) r8 allows attackers to cause a denial of service (crash) and possibly execute arbitrary code via a scan job with format strings in the description field. Vulnerabilidad de cadena de formato en CA Integrated Threat Management (ITM), eTrust Antivirus (eAV) y eTrust PestPatrol (ePP) r8 permite a atacantes provocar una denegación de servicio (caída de la aplicación) y posiblemente ejecutar c... • http://lists.grok.org.uk/pipermail/full-disclosure/2006-June/047423.html •