Vulnerabilities > CVE-2009-0042
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Multiple unspecified vulnerabilities in the Arclib library (arclib.dll) before 7.3.0.15 in the CA Anti-Virus engine for CA Anti-Virus for the Enterprise 7.1, r8, and r8.1; Anti-Virus 2007 v8 and 2008; Internet Security Suite 2007 v3 and 2008; and other CA products allow remote attackers to bypass virus detection via a malformed archive file.
Vulnerable Configurations
Nessus
| NASL family | Windows |
| NASL id | CA_AV_ARCHIVE_FILE_EVASION.NASL |
| description | The Computer Associates (CA) antivirus scan engine installed on the remote host is affected by multiple scan evasion vulnerabilities due to a failure to handle certain malformed archive files. An attacker can exploit this, via crafted archive files, to evade detection by the scan engine. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 35473 |
| published | 2009-01-28 |
| reporter | This script is Copyright (C) 2009-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/35473 |
| title | CA Antivirus Engine Multiple Scan Evasion |
References
- http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/26/ca20090126-01-ca-anti-virus-engine-detection-evasion-multiple-vulnerabilities.aspx
- http://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=197601
- http://www.securityfocus.com/archive/1/500417/100/0/threaded
- http://www.securityfocus.com/bid/33464
- http://www.securitytracker.com/id?1021639
- http://www.vupen.com/english/advisories/2009/0270
- https://exchange.xforce.ibmcloud.com/vulnerabilities/48261