CyberSec.Space Logo
返回 CVE 浏览器

CVE-2009-3587

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0260%
EPSS Percentile7.57th
Published2009年10月13日
Last Modified2026年4月23日

Vulnerability Description

Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted RAR archive file that triggers heap corruption, a different vulnerability than CVE-2009-3588.

Affected Platforms (CPE)

📦
Broadcom

Anti Virus

= 2007
📦
Broadcom

Anti Virus

= 2008
📦
Broadcom

Anti Virus For The Enterprise

= 7.1
📦
Broadcom

Anti Virus For The Enterprise

= r8
📦
Broadcom

Anti Virus Sdk

All versions
📦
Broadcom

Common Services

= 11
📦
Broadcom

Common Services

= 11.1
📦
Broadcom

Etrust Antivirus

= 7.1
📦
Broadcom

Etrust Antivirus

= 8
📦
Broadcom

Etrust Antivirus

= 8.1
📦
Broadcom

Etrust Integrated Threat Management

= 8.1
📦
Broadcom

Etrust Intrusion Detection

= 3.0
📦
Broadcom

Etrust Secure Content Manager

= 1.1
📦
Broadcom

Internet Security Suite

All versions
📦
Broadcom

Internet Security Suite

= 3.0
📦
Broadcom

Network And Systems Management

= r3.0
📦
Broadcom

Network And Systems Management

= r3.1
📦
Broadcom

Network And Systems Management

= r11
📦
Broadcom

Network And Systems Management

= r11.1
📦
Broadcom

Secure Content Manager

= 1.1
📦
Broadcom

Secure Content Manager

= 8.0
📦
Broadcom

Unicenter Network And Systems Management

= 3.0
📦
Broadcom

Unicenter Network And Systems Management

= 3.1
📦
Broadcom

Unicenter Network And Systems Management

= 11
📦
Broadcom

Unicenter Network And Systems Management

= 11.1
📦
Ca

Anti Virus

= 2009
📦
Ca

Anti Virus For The Enterprise

= r8.1
📦
Ca

Anti Virus Gateway

= 7.1
📦
Ca

Anti Virus Plus

= 2009
📦
Ca

Arcserve Backup

= r11.5
📦
Ca

Arcserve For Windows Client Agent

All versions
📦
Ca

Arcserve For Windows Server Component

All versions
📦
Ca

Common Services

= 3.1
📦
Ca

Etrust Anti Virus Gateway

= 7.1
📦
Ca

Etrust Anti Virus Sdk

All versions
📦
Ca

Etrust Ez Antivirus

= r7.1
📦
Ca

Etrust Intrusion Detection

= 2.0
📦
Ca

Etrust Intrusion Detection

= 3.0
📦
Ca

Etrust Secure Content Manager

= 8.0
📦
Ca

Gateway Security

= r8.1
📦
Ca

Internet Security Suite 2008

All versions
📦
Ca

Internet Security Suite Plus 2008

All versions
📦
Ca

Internet Security Suite Plus 2009

All versions
📦
Ca

Protection Suites

= r2
📦
Ca

Protection Suites

= r3
📦
Ca

Protection Suites

= r3.1
📦
Ca

Threat Manager

= 8.1
📦
Ca

Threat Manager

= r8
📦
Ca

Threat Manager Total Defense

All versions
📦
Ca

Arcserve Backup

= r11.1

References & Advisories

🔗 http://osvdb.org/58691
🔗 http://secunia.com/advisories/36976
🔗 http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=218878
🔗 http://www.securityfocus.com/archive/1/507068/100/0/threaded
🔗 http://www.securityfocus.com/bid/36653
🔗 http://www.securitytracker.com/id?1022999
🔗 http://www.vupen.com/english/advisories/2009/2852
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/53697

相关漏洞威胁

CVE-2006-594010.0

Unspecified vulnerability in Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote attack vectors related to "Intege...

CVE-2006-593810.0

Grisoft AVG Anti-Virus before 7.1.407 has unknown impact and remote attack vectors involving an uninitialized variable and a craft...

CVE-2005-305710.0

The FTP component in FortiGate 2.8 running FortiOS 2.8MR10 and v3beta, and other versions before 3.0 MR1, allows remote attackers ...

CVE-2006-640910.0

F-Secure Anti-Virus for Linux Gateways 4.65 allows remote attackers to cause a denial of service (possibly fatal scan error), and ...