CVE-2009-3587
Severity Score
9.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted RAR archive file that triggers heap corruption, a different vulnerability than CVE-2009-3588.
Vulnerabilidad no especificada en el componente arclib en el motor Anti-Virus en CA Anti-Virus para Enterprise (formalmente eTrust Antivirus) v7.1 hasta v8.1; Anti-Virus 2007 (v8) hasta 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) hasta Plus 2009; y otros productos CA permite a atacantes remotos causar una denegación de servicio y ejecutar probablemente código de su elección a través del archivo RAR manipulado que provoca una corrupción de la memoria dinámica, una vulnerabilidad diferente que CVE-2009-3588.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2009-10-08 CVE Reserved
- 2009-10-12 CVE Published
- 2024-08-07 CVE Updated
- 2024-10-26 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (8)
| URL | Tag | Source |
|---|---|---|
| http://osvdb.org/58691 | Broken Link | |
| http://secunia.com/advisories/36976 | Third Party Advisory | |
| http://www.securityfocus.com/archive/1/507068/100/0/threaded | Mailing List | |
| http://www.securityfocus.com/bid/36653 | Third Party Advisory | |
| http://www.securitytracker.com/id?1022999 | Third Party Advisory | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/53697 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=218878 | 2024-05-17 |
| URL | Date | SRC |
|---|---|---|
| http://www.vupen.com/english/advisories/2009/2852 | 2024-05-17 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Ca Search vendor "Ca" | Arcserve Backup Search vendor "Ca" for product "Arcserve Backup" | r11.1 Search vendor "Ca" for product "Arcserve Backup" and version "r11.1" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | - | - |
Safe
|
| Ca Search vendor "Ca" | Arcserve Backup Search vendor "Ca" for product "Arcserve Backup" | r11.5 Search vendor "Ca" for product "Arcserve Backup" and version "r11.5" | - |
Affected
| in | Linux Search vendor "Linux" | Linux Kernel Search vendor "Linux" for product "Linux Kernel" | - | - |
Safe
|
| Broadcom Search vendor "Broadcom" | Anti-virus Search vendor "Broadcom" for product "Anti-virus" | 2007 Search vendor "Broadcom" for product "Anti-virus" and version "2007" | 8 |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Anti-virus Search vendor "Broadcom" for product "Anti-virus" | 2008 Search vendor "Broadcom" for product "Anti-virus" and version "2008" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Anti-virus For The Enterprise Search vendor "Broadcom" for product "Anti-virus For The Enterprise" | 7.1 Search vendor "Broadcom" for product "Anti-virus For The Enterprise" and version "7.1" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Anti-virus For The Enterprise Search vendor "Broadcom" for product "Anti-virus For The Enterprise" | r8 Search vendor "Broadcom" for product "Anti-virus For The Enterprise" and version "r8" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Anti-virus Sdk Search vendor "Broadcom" for product "Anti-virus Sdk" | * | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Common Services Search vendor "Broadcom" for product "Common Services" | 11 Search vendor "Broadcom" for product "Common Services" and version "11" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Common Services Search vendor "Broadcom" for product "Common Services" | 11.1 Search vendor "Broadcom" for product "Common Services" and version "11.1" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Etrust Antivirus Search vendor "Broadcom" for product "Etrust Antivirus" | 7.1 Search vendor "Broadcom" for product "Etrust Antivirus" and version "7.1" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Etrust Antivirus Search vendor "Broadcom" for product "Etrust Antivirus" | 8 Search vendor "Broadcom" for product "Etrust Antivirus" and version "8" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Etrust Antivirus Search vendor "Broadcom" for product "Etrust Antivirus" | 8.1 Search vendor "Broadcom" for product "Etrust Antivirus" and version "8.1" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Etrust Integrated Threat Management Search vendor "Broadcom" for product "Etrust Integrated Threat Management" | 8.1 Search vendor "Broadcom" for product "Etrust Integrated Threat Management" and version "8.1" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Etrust Intrusion Detection Search vendor "Broadcom" for product "Etrust Intrusion Detection" | 3.0 Search vendor "Broadcom" for product "Etrust Intrusion Detection" and version "3.0" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Etrust Secure Content Manager Search vendor "Broadcom" for product "Etrust Secure Content Manager" | 1.1 Search vendor "Broadcom" for product "Etrust Secure Content Manager" and version "1.1" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Internet Security Suite Search vendor "Broadcom" for product "Internet Security Suite" | * | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Internet Security Suite Search vendor "Broadcom" for product "Internet Security Suite" | 3.0 Search vendor "Broadcom" for product "Internet Security Suite" and version "3.0" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Network And Systems Management Search vendor "Broadcom" for product "Network And Systems Management" | r3.0 Search vendor "Broadcom" for product "Network And Systems Management" and version "r3.0" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Network And Systems Management Search vendor "Broadcom" for product "Network And Systems Management" | r3.1 Search vendor "Broadcom" for product "Network And Systems Management" and version "r3.1" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Network And Systems Management Search vendor "Broadcom" for product "Network And Systems Management" | r11 Search vendor "Broadcom" for product "Network And Systems Management" and version "r11" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Network And Systems Management Search vendor "Broadcom" for product "Network And Systems Management" | r11.1 Search vendor "Broadcom" for product "Network And Systems Management" and version "r11.1" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Secure Content Manager Search vendor "Broadcom" for product "Secure Content Manager" | 1.1 Search vendor "Broadcom" for product "Secure Content Manager" and version "1.1" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Secure Content Manager Search vendor "Broadcom" for product "Secure Content Manager" | 8.0 Search vendor "Broadcom" for product "Secure Content Manager" and version "8.0" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Unicenter Network And Systems Management Search vendor "Broadcom" for product "Unicenter Network And Systems Management" | 3.0 Search vendor "Broadcom" for product "Unicenter Network And Systems Management" and version "3.0" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Unicenter Network And Systems Management Search vendor "Broadcom" for product "Unicenter Network And Systems Management" | 3.1 Search vendor "Broadcom" for product "Unicenter Network And Systems Management" and version "3.1" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Unicenter Network And Systems Management Search vendor "Broadcom" for product "Unicenter Network And Systems Management" | 11 Search vendor "Broadcom" for product "Unicenter Network And Systems Management" and version "11" | - |
Affected
| ||||||
| Broadcom Search vendor "Broadcom" | Unicenter Network And Systems Management Search vendor "Broadcom" for product "Unicenter Network And Systems Management" | 11.1 Search vendor "Broadcom" for product "Unicenter Network And Systems Management" and version "11.1" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Anti-virus Search vendor "Ca" for product "Anti-virus" | 2009 Search vendor "Ca" for product "Anti-virus" and version "2009" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Anti-virus For The Enterprise Search vendor "Ca" for product "Anti-virus For The Enterprise" | r8.1 Search vendor "Ca" for product "Anti-virus For The Enterprise" and version "r8.1" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Anti-virus Gateway Search vendor "Ca" for product "Anti-virus Gateway" | 7.1 Search vendor "Ca" for product "Anti-virus Gateway" and version "7.1" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Anti-virus Plus Search vendor "Ca" for product "Anti-virus Plus" | 2009 Search vendor "Ca" for product "Anti-virus Plus" and version "2009" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Arcserve Backup Search vendor "Ca" for product "Arcserve Backup" | r11.5 Search vendor "Ca" for product "Arcserve Backup" and version "r11.5" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Arcserve For Windows Client Agent Search vendor "Ca" for product "Arcserve For Windows Client Agent" | * | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Arcserve For Windows Server Component Search vendor "Ca" for product "Arcserve For Windows Server Component" | * | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Common Services Search vendor "Ca" for product "Common Services" | 3.1 Search vendor "Ca" for product "Common Services" and version "3.1" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Etrust Anti-virus Gateway Search vendor "Ca" for product "Etrust Anti-virus Gateway" | 7.1 Search vendor "Ca" for product "Etrust Anti-virus Gateway" and version "7.1" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Etrust Anti-virus Sdk Search vendor "Ca" for product "Etrust Anti-virus Sdk" | * | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Etrust Ez Antivirus Search vendor "Ca" for product "Etrust Ez Antivirus" | r7.1 Search vendor "Ca" for product "Etrust Ez Antivirus" and version "r7.1" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Etrust Intrusion Detection Search vendor "Ca" for product "Etrust Intrusion Detection" | 2.0 Search vendor "Ca" for product "Etrust Intrusion Detection" and version "2.0" | sp1 |
Affected
| ||||||
| Ca Search vendor "Ca" | Etrust Intrusion Detection Search vendor "Ca" for product "Etrust Intrusion Detection" | 3.0 Search vendor "Ca" for product "Etrust Intrusion Detection" and version "3.0" | sp1 |
Affected
| ||||||
| Ca Search vendor "Ca" | Etrust Secure Content Manager Search vendor "Ca" for product "Etrust Secure Content Manager" | 8.0 Search vendor "Ca" for product "Etrust Secure Content Manager" and version "8.0" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Gateway Security Search vendor "Ca" for product "Gateway Security" | r8.1 Search vendor "Ca" for product "Gateway Security" and version "r8.1" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Internet Security Suite 2008 Search vendor "Ca" for product "Internet Security Suite 2008" | * | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Internet Security Suite Plus 2008 Search vendor "Ca" for product "Internet Security Suite Plus 2008" | * | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Internet Security Suite Plus 2009 Search vendor "Ca" for product "Internet Security Suite Plus 2009" | * | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Protection Suites Search vendor "Ca" for product "Protection Suites" | r2 Search vendor "Ca" for product "Protection Suites" and version "r2" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Protection Suites Search vendor "Ca" for product "Protection Suites" | r3 Search vendor "Ca" for product "Protection Suites" and version "r3" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Protection Suites Search vendor "Ca" for product "Protection Suites" | r3.1 Search vendor "Ca" for product "Protection Suites" and version "r3.1" | - |
Affected
| ||||||
| Ca Search vendor "Ca" | Threat Manager Search vendor "Ca" for product "Threat Manager" | 8.1 Search vendor "Ca" for product "Threat Manager" and version "8.1" | enterprise |
Affected
| ||||||
| Ca Search vendor "Ca" | Threat Manager Search vendor "Ca" for product "Threat Manager" | r8 Search vendor "Ca" for product "Threat Manager" and version "r8" | enterprise |
Affected
| ||||||
| Ca Search vendor "Ca" | Threat Manager Total Defense Search vendor "Ca" for product "Threat Manager Total Defense" | * | - |
Affected
| ||||||