Vulnerabilities > CVE-2007-2864

CVSS 9.3 - CRITICAL

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

broadcom

critical

exploit available

metasploit

NVD

Published: 2007-06-06

Updated: 2021-04-14

Summary

Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a large invalid value of the coffFiles field in a .CAB file.

Vulnerable Configurations

Part	Description	Count
Application	Broadcom Broadcom Anti Virus FOR THE Enterprise 8 Broadcom Brightstor Arcserve Backup 9.01 Broadcom Brightstor Arcserve Backup 10.5 Broadcom Brightstor Arcserve Backup 11 Broadcom Brightstor Arcserve Backup 11.1 Broadcom Brightstor Arcserve Backup 11.5 Broadcom Common Services 1.0 Broadcom Common Services 1.1 Broadcom Common Services 2.0 Broadcom Common Services 2.1 Broadcom Common Services 2.2 Broadcom Common Services 3.0 Broadcom Etrust Antivirus 8.0 Broadcom Etrust Antivirus 8.1 Broadcom Etrust Antivirus Gateway 7.1 Broadcom Etrust Antivirus SDK * Broadcom Etrust EZ Antivirus 6.1 Broadcom Etrust EZ Antivirus 7.0 Broadcom Etrust EZ Armor 1.0 Broadcom Etrust EZ Armor 2.0 Broadcom Etrust EZ Armor 3.0 Broadcom Etrust EZ Armor 3.1 Broadcom Integrated Threat Management 8.0 Broadcom Internet Security Suite 1.0 Broadcom Internet Security Suite 2.0 Broadcom Internet Security Suite 3.0 Broadcom Unicenter Network AND Systems Management 3.0 Broadcom Unicenter Network AND Systems Management 3.1 Broadcom Unicenter Network AND Systems Management 11 Broadcom Unicenter Network AND Systems Management 11.1	30
Application	Ca CA Etrust Secure Content Manager 8.0 CA Protection Suites R2 CA Protection Suites R3	3

Exploit-Db

description	CA Antivirus Engine CAB Buffer Overflow. CVE-2007-2864. Local exploit for windows platform
id	EDB-ID:16677
last seen	2016-02-02
modified	2010-11-11
published	2010-11-11
reporter	metasploit
source	https://www.exploit-db.com/download/16677/
title	CA Antivirus Engine CAB Buffer Overflow

Metasploit

description	This module exploits a stack buffer overflow in CA eTrust Antivirus 8.1.637. By creating a specially crafted CAB file, an attacker may be able to execute arbitrary code.
id	MSF:EXPLOIT/WINDOWS/FILEFORMAT/CA_CAB
last seen	2020-03-10
modified	2020-01-15
published	2009-08-27
references	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-2864
reporter	Rapid7
source	https://github.com/rapid7/metasploit-framework/blob/master//modules/exploits/windows/fileformat/ca_cab.rb
title	CA Antivirus Engine CAB Buffer Overflow

Packetstorm

data source	https://packetstormsecurity.com/files/download/83164/ca_cab.rb.txt
id	PACKETSTORM:83164
last seen	2016-12-05
published	2009-11-26
reporter	MC
source	https://packetstormsecurity.com/files/83164/CA-Antivirus-Engine-CAB-Buffer-Overflow.html
title	CA Antivirus Engine CAB Buffer Overflow

Saint

bid	24330
description	CA Antivirus engine CAB handling buffer overflow
id	misc_av_cacab
osvdb	35245
title	ca_antivirus_cab
type	client

Vulnerabilities > CVE-2007-2864 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2007-2864"}]}

Summary

Vulnerable Configurations

Exploit-Db

Metasploit

Packetstorm

Saint

References

Vulnerabilities > CVE-2007-2864