Security Lab

Уязвимость при обработке CHM и RAR файлов в продуктах CA

Дата публикации:25.07.2007
Дата изменения:12.02.2009
Всего просмотров:3004
Опасность:
Средняя
Наличие исправления: Да
Количество уязвимостей:1
CVE ID: CVE-2006-5645
CVE-2007-3875
Вектор эксплуатации: Удаленная
Воздействие: Отказ в обслуживании
CWE ID: Нет данных
Наличие эксплоита: Нет данных
Уязвимые продукты: BrightStor ARCserve Backup 9.x
BrightStor ARCserve Backup 11.x
BrightStor ARCserve Backup 11.x (for Windows)
BrightStor ARCserve Backup 11.x (for Microsoft SQL Server)
BrightStor ARCserve Backup 11.x (for Oracle)
BrightStor ARCserve Backup 11.x (for Open Files)
BrightStor Enterprise Backup 10.x
ARCserve Backup Client Agent 11.x
CA Anti-Spyware 8.x
CA Anti-Spyware 2007
CA Anti-Virus 2007 (8.x)
CA Anti-Virus for the Enterprise 8.x
CA Anti-Virus Gateway 7.x
CA Anti-Virus SDK
CA Common Services (CCS) 11.x
CA Internet Security Suite 2007
CA Protection Suites 3.x
CA Protection Suites 2.x
CA Threat Manager 8.x
CA Unicenter Network and Systems Management (NSM) 3.x
CA Unicenter Network and Systems Management (NSM) 11.x
eTrust Antivirus 6.x
eTrust Antivirus 7.x
eTrust EZ Armor 1.x
eTrust EZ Armor 2.x
eTrust EZ Armor 3.x
eTrust Secure Content Manager (SCM)
eTrust Intrusion Detection 2.x
eTrust Intrusion Detection 3.x
eTrust Internet Security Suite 1.x
eTrust Internet Security Suite 2.x
Уязвимые версии:
CA Anti-Virus for the Enterprise (ранее eTrust Antivirus) 7.0, 7.1, r8, r8.1
CA Anti-Virus 2007 (v8)
eTrust EZ Antivirus r7, r6.1
CA Internet Security Suite 2007 (v3)
eTrust Internet Security Suite r1, r2
eTrust EZ Armor r1, r2, r3.x
CA Threat Manager for the Enterprise (ранее eTrust Integrated Threat Management) r8
CA Anti-Virus Gateway (ранее eTrust Antivirus eTrust Antivirus Gateway) 7.1
CA Protection Suites r2, r3
CA Secure Content Manager (ранее eTrust Secure Content Manager) 1.1, 8.0
CA Anti-Spyware for the Enterprise (ранее eTrust PestPatrol) r8, 8.1
CA Anti-Spyware 2007
Unicenter Network and Systems Management (NSM) r3.0
Unicenter Network and Systems Management (NSM) r3.1
Unicenter Network and Systems Management (NSM) r11
Unicenter Network and Systems Management (NSM) r11.1
BrightStor ARCserve Backup r11.5
BrightStor ARCserve Backup r11.1
BrightStor ARCserve Backup r11 for Windows
BrightStor Enterprise Backup r10.5
BrightStor ARCserve Backup v9.01
BrightStor ARCserve Client agent for Windows
eTrust Intrusion Detection 2.0 SP1, 3.0, 3.0 SP1
CA Common Services (CCS) r11
CA Common Services (CCS) r11.1
CA Anti-Virus SDK (ранее eTrust Anti-Virus SDK)

Описание:
Обнаруженные уязвимости позволяют удаленному пользователю вызвать отказ в обслуживании приложения.

1. Уязвимость существует из-за ошибки при обработке CHM файлов. Удаленный пользователь может с помощью специально сформированного CHM файла, содержащего некорректное значение в поле 'previous listing chunk number', вызвать зацикливание приложения.

2. Уязвимость существует из-за неизвестной ошибки при обработке RAR файлов. Удаленный пользователь может с помощью специально сформированного RAR файла вызвать отказ в обслуживании приложения.

URL производителя: www.ca.com

Решение: Установите последнюю версию с сайта производителя.

CA Secure Content Manager 1.1:
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO89469

CA Secure Content Manager 8.0:
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO87114

Unicenter Network and Systems Management (NSM) r3.0:
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO89141

Unicenter Network and Systems Management (NSM) r3.1:
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO89139

Unicenter Network and Systems Management (NSM) r11:
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO89140

Unicenter Network and Systems Management (NSM) r11.1:
http://supportconnect.ca.com/sc/redir...mp;searchID=QO89138&startsearch=1

CA Common Services (CCS) r11:
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO89140

CA Common Services (CCS) r11.1:
http://supportconnect.ca.com/sc/redir...mp;searchID=QO89138&startsearch=1

CA Anti-Virus Gateway 7.1:
http://supportconnect.ca.com/sc/redir...mp;searchID=QO89381&startsearch=1

eTrust Intrusion Detection 2.0 sp1:
http://supportconnect.ca.com/sc/redir...mp;searchID=QO89474&startsearch=1

eTrust Intrusion Detection 3.0:
http://supportconnect.ca.com/sc/redir...mp;searchID=QO86925&startsearch=1

eTrust Intrusion Detection 3.0 sp1:
http://supportconnect.ca.com/sc/redir...mp;searchID=QO86923&startsearch=1

CA Anti-Virus 7.1 (Solaris):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86831

CA Anti-Virus 7.1 (Netware):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86832

CA Anti-Virus 7.1 (MacPPC):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86833

CA Anti-Virus 7.1 (MacIntel):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86834

CA Anti-Virus 7.1 (Linux390):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86835

CA Anti-Virus 7.1 (Linux):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86836

CA Anti-Virus 7.1 (HP-UX):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86837

CA Anti-Virus 7.1 (Windows NT 32 bit):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86843

CA Anti-Virus 7.1 (Windows NT AMD64):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86846

CA Threat Manager for the Enterprise r8.1 (Linux):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86839

CA Threat Manager for the Enterprise r8.1 (Mac):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86828

CA Threat Manager for the Enterprise r8.1 (Solaris):
http://supportconnect.ca.com/sc/redir.jsp?reqPage=search&searchID=QO86829

Ссылки: Computer Associates AntiVirus CHM File Handling DoS Vulnerability