CVE-2007-2863

Published: Jun 6, 2007Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a long filename in a .CAB file.

Affected (13)

Products: Broadcom: Anti Virus For The Enterprise, Brightstor Arcserve Backup, Brightstor Enterprise Backup, Common Services · Ca: Anti Virus For The Enterprise, Brightstor Arcserve Backup

4 products

Anti Virus For The Enterprise

Brightstor Arcserve Backup

Brightstor Enterprise Backup

Common Services

2 products

Anti Virus For The Enterprise

Brightstor Arcserve Backup

Configuration A

13 vulnerable

Vulnerable Software	Affected Versions
Broadcom Anti Virus For The Enterprise	Version 8
Broadcom Brightstor Arcserve Backup	Version 11.1
Broadcom Brightstor Arcserve Backup	Version 11.5
Broadcom Brightstor Arcserve Backup	Version 9.01
Broadcom Brightstor Enterprise Backup	Version 10.5
Broadcom Common Services	Version 1.0
Broadcom Common Services	Version 1.1
Broadcom Common Services	Version 2.0
Broadcom Common Services	Version 2.1
Broadcom Common Services	Version 2.2
Broadcom Common Services	Version 3.0
Ca Anti Virus For The Enterprise	Version 8
Ca Brightstor Arcserve Backup	Version 11

References (24)

http://secunia.com/advisories/25570

Source: cve@mitre.org

PatchVendor Advisory

http://securityreason.com/securityalert/2790

Source: cve@mitre.org

http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-securitynotice.asp

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/739409

Source: cve@mitre.org

US Government Resource

http://www.osvdb.org/35244

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/470601/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/470754/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/24331

Source: cve@mitre.org

Patch

http://www.securitytracker.com/id?1018199

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/2072

Source: cve@mitre.org

http://www.zerodayinitiative.com/advisories/ZDI-07-034.html

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/34741

Source: cve@mitre.org

http://secunia.com/advisories/25570

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://securityreason.com/securityalert/2790

Source: af854a3a-2127-422b-91ae-364da2661108

http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-securitynotice.asp

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/739409

Source: af854a3a-2127-422b-91ae-364da2661108

US Government Resource

http://www.osvdb.org/35244

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/470601/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/470754/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/24331

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.securitytracker.com/id?1018199

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.vupen.com/english/advisories/2007/2072

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.zerodayinitiative.com/advisories/ZDI-07-034.html

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/34741

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.