CVE-2007-2864 : Detail

Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a large invalid value of the coffFiles field in a .CAB file.

Metrics

EPSS

EPSS Score

EPSS Percentile

Exploit information

Exploit Database EDB-ID : 16677

Publication date : 2010-11-10 23h00 +00:00
Author : Metasploit
EDB Verified : Yes

Products Mentioned

Configuraton 0

Broadcom>>Anti-virus_for_the_enterprise >> Version 8

Broadcom>>Brightstor_arcserve_backup >> Version 9.01

Broadcom>>Brightstor_arcserve_backup >> Version 10.5

Broadcom>>Brightstor_arcserve_backup >> Version 11

Broadcom>>Brightstor_arcserve_backup >> Version 11.1

Broadcom>>Brightstor_arcserve_backup >> Version 11.5

Broadcom>>Common_services >> Version 1.0

Broadcom>>Common_services >> Version 1.1

Broadcom>>Common_services >> Version 2.0

Broadcom>>Common_services >> Version 2.1

Broadcom>>Common_services >> Version 2.2

Broadcom>>Common_services >> Version 3.0

Broadcom>>Etrust_antivirus >> Version 8.0

Broadcom>>Etrust_antivirus >> Version 8.1

Broadcom>>Etrust_antivirus_gateway >> Version 7.1

Broadcom>>Etrust_antivirus_sdk >> Version *

Broadcom>>Etrust_ez_antivirus >> Version 6.1

Broadcom>>Etrust_ez_antivirus >> Version 7.0

Broadcom>>Etrust_ez_armor >> Version 1.0

Broadcom>>Etrust_ez_armor >> Version 2.0

Broadcom>>Etrust_ez_armor >> Version 3.0

Broadcom>>Etrust_ez_armor >> Version 3.1

Broadcom>>Integrated_threat_management >> Version 8.0

Broadcom>>Internet_security_suite >> Version 1.0

Broadcom>>Internet_security_suite >> Version 2.0

Broadcom>>Internet_security_suite >> Version 3.0

Broadcom>>Unicenter_network_and_systems_management >> Version 3.0

Broadcom>>Unicenter_network_and_systems_management >> Version 3.1

Broadcom>>Unicenter_network_and_systems_management >> Version 11

Broadcom>>Unicenter_network_and_systems_management >> Version 11.1

Ca>>Etrust_secure_content_manager >> Version 8.0

Ca>>Protection_suites >> Version r2

Ca>>Protection_suites >> Version r3

References