QwikSec

Security Database

CVE

CWE

Training

CVE-2007-3875

Published: Jul 26, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) 8 and certain other CA products allows remote attackers to cause a denial of service (infinite loop and loss of antivirus functionality) via an invalid "previous listing chunk number" field in a CHM file.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

vdb-entry

x_refsource_SECTRACK

http://www.ca.com/us/securityadvisor/newsinfo/collateral.aspx?cid=149847

x_refsource_CONFIRM

20070724 Computer Associates AntiVirus CHM File Handling DoS Vulnerability

third-party-advisory

x_refsource_IDEFENSE

20070725 n.runs-SA-2007.024 - CA eTrust Antivirus Infinite Loop DoS (remote) Advisory

mailing-list

x_refsource_BUGTRAQ

vdb-entry

x_refsource_VUPEN

20070725 [CAID 35525, 35526]: CA Products Arclib Library Denial of Service Vulnerabilities

mailing-list

x_refsource_BUGTRAQ

ca-arclib-chm-dos(35573)

vdb-entry

x_refsource_XF

20070726 RE: [CAID 35525, 35526]: CA Products Arclib Library Denial of Service Vulnerabilities

mailing-list

x_refsource_BUGTRAQ

http://supportconnectw.ca.com/public/antivirus/infodocs/caprodarclib-secnot.asp

x_refsource_CONFIRM

vdb-entry

x_refsource_BID

third-party-advisory

x_refsource_SECUNIA

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.