Etrust_intrusion_detection - Vulncode-DB

Note:

This project will be discontinued after December 13, 2021. [more]

Product:
Etrust_intrusion_detection
(Broadcom)

Repositories	Unknown: This might be proprietary software.
#Vulnerabilities	16

Date	Id	Summary	Products	Score	Patch	Annotated
2009-10-13	CVE-2009-3587	Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted RAR archive file that triggers heap corruption, a different vulnerability than CVE-2009-3588.	Anti\-Virus, Anti\-Virus_for_the_enterprise, Anti\-Virus_sdk, Common_services, Etrust_antivirus, Etrust_integrated_threat_management, Etrust_intrusion_detection, Etrust_secure_content_manager, Internet_security_suite, Network_and_systems_management, Secure_content_manager, Unicenter_network_and_systems_management, Anti\-Virus, Anti\-Virus_for_the_enterprise, Anti\-Virus_gateway, Anti\-Virus_plus, Arcserve_backup, Arcserve_for_windows_client_agent, Arcserve_for_windows_server_component, Common_services, Etrust_anti\-Virus_gateway, Etrust_anti\-Virus_sdk, Etrust_ez_antivirus, Etrust_intrusion_detection, Etrust_secure_content_manager, Gateway_security, Internet_security_suite_2008, Internet_security_suite_plus_2008, Internet_security_suite_plus_2009, Protection_suites, Threat_manager, Threat_manager_total_defense	N/A
2009-10-13	CVE-2009-3588	Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service via a crafted RAR archive file that triggers stack corruption, a different vulnerability than CVE-2009-3587.	Anti\-Virus, Anti\-Virus_for_the_enterprise, Anti\-Virus_sdk, Arcserve_backup, Common_services, Etrust_antivirus, Etrust_integrated_threat_management, Etrust_intrusion_detection, Etrust_secure_content_manager, Internet_security_suite, Network_and_systems_management, Secure_content_manager, Unicenter_network_and_systems_management, Anti\-Virus, Anti\-Virus_for_the_enterprise, Anti\-Virus_gateway, Anti\-Virus_plus, Arcserve_backup, Arcserve_for_windows_client_agent, Arcserve_for_windows_server_component, Common_services, Etrust_anti\-Virus_gateway, Etrust_anti\-Virus_sdk, Etrust_ez_antivirus, Etrust_intrusion_detection, Etrust_secure_content_manager, Gateway_security, Internet_security_suite_2008, Internet_security_suite_plus_2008, Internet_security_suite_plus_2009, Protection_suites, Threat_manager, Threat_manager_total_defense	N/A
2000-06-07	CVE-2000-0559	eTrust Intrusion Detection System (formerly SessionWall-3) uses weak encryption (XOR) to store administrative passwords in the registry, which allows local users to easily decrypt the passwords.	Etrust_intrusion_detection	N/A
2007-07-26	CVE-2007-3875	arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) 8 and certain other CA products allows remote attackers to cause a denial of service (infinite loop and loss of antivirus functionality) via an invalid "previous listing chunk number" field in a CHM file.	Anti\-Spyware, Anti\-Virus_for_the_enterprise, Anti_virus_sdk, Antispyware_for_the_enterprise, Antivirus_sdk, Brightstor_arcserve_backup, Brightstor_arcserve_client, Brightstor_enterprise_backup, Brigthstor_arcserve_client_for_windows, Common_services, Etrust_antivirus, Etrust_antivirus_gateway, Etrust_ez_antivirus, Etrust_ez_armor, Etrust_internet_security_suite, Etrust_intrusion_detection, Internet_security_suite, Secure_content_manager, Threat_manager, Unicenter_network_and_systems_management, Brightstor_arcserve_backup, Etrust_intrusion_detection, Protection_suites	N/A
2009-01-28	CVE-2009-0042	Multiple unspecified vulnerabilities in the Arclib library (arclib.dll) before 7.3.0.15 in the CA Anti-Virus engine for CA Anti-Virus for the Enterprise 7.1, r8, and r8.1; Anti-Virus 2007 v8 and 2008; Internet Security Suite 2007 v3 and 2008; and other CA products allow remote attackers to bypass virus detection via a malformed archive file.	Anti\-Spyware, Anti\-Spyware_for_the_enterprise, Anti\-Virus, Anti\-Virus_for_the_enterprise, Anti\-Virus_sdk, Antivirus_gateway, Arcserve_client_agent, Common_services, Etrust_ez_antivirus, Etrust_intrusion_detection, Network_and_systems_management, Secure_content_manager, Arcserve_backup, Etrust_intrusion_detection, Internet_security_suite_2007, Internet_security_suite_2008, Internet_security_suite_plus_2008, Protection_suites, Threat_manager_for_the_enterprise	N/A
2007-07-26	CVE-2007-3302	The CallCode ActiveX control in caller.dll 3.0 before 20070713, and 3.0 SP1 before 3.0.5.81, in CA (formerly Computer Associates) eTrust Intrusion Detection allows remote attackers to load arbitrary DLLs on a client system, and execute code from these DLLs, via unspecified "scriptable functions."	Etrust_intrusion_detection, Etrust_intrusion_detection	N/A
2005-01-10	CVE-2004-1096	Archive::Zip Perl module before 1.14, when used by antivirus programs such as amavisd-new, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.	Brightstor_arcserve_backup, Etrust_antivirus, Etrust_antivirus_gateway, Etrust_ez_antivirus, Etrust_ez_armor, Etrust_intrusion_detection, Etrust_secure_content_manager, Inoculateit, Etrust_antivirus, Etrust_secure_content_manager, Nod32_antivirus, Linux, Kaspersky_anti\-Virus, Mandrake_linux, Antivirus_engine, Rav_antivirus_desktop, Rav_antivirus_for_file_servers, Rav_antivirus_for_mail_servers, Sophos_anti\-Virus, Sophos_puremessage_anti\-Virus, Sophos_small_business_suite, Suse_linux	N/A
2005-02-09	CVE-2004-0937	Sophos Anti-Virus before 3.87.0, and Sophos Anti-Virus for Windows 95, 98, and Me before 3.88.0, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.	Archive_zip, Brightstor_arcserve_backup, Etrust_antivirus, Etrust_antivirus_gateway, Etrust_ez_antivirus, Etrust_ez_armor, Etrust_intrusion_detection, Etrust_secure_content_manager, Inoculateit, Etrust_antivirus, Etrust_secure_content_manager, Nod32_antivirus, Linux, Kaspersky_anti\-Virus, Mandrake_linux, Antivirus_engine, Rav_antivirus_desktop, Rav_antivirus_for_file_servers, Rav_antivirus_for_mail_servers, Sophos_anti\-Virus, Sophos_puremessage_anti\-Virus, Sophos_small_business_suite, Suse_linux	N/A
2007-03-02	CVE-2007-1005	Heap-based buffer overflow in SW3eng.exe in the eID Engine service in CA (formerly Computer Associates) eTrust Intrusion Detection 3.0.5.57 and earlier allows remote attackers to cause a denial of service (application crash) via a long key length value to the remote administration port (9191/tcp).	Etrust_intrusion_detection, Etrust_intrusion_detection	N/A
2005-01-27	CVE-2004-0934	Kaspersky 3.x to 4.x allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on a target system.	Archive_zip, Brightstor_arcserve_backup, Etrust_antivirus, Etrust_antivirus_gateway, Etrust_ez_antivirus, Etrust_ez_armor, Etrust_intrusion_detection, Etrust_secure_content_manager, Inoculateit, Etrust_antivirus, Etrust_secure_content_manager, Nod32_antivirus, Linux, Kaspersky_anti\-Virus, Mandrake_linux, Antivirus_engine, Rav_antivirus_desktop, Rav_antivirus_for_file_servers, Rav_antivirus_for_mail_servers, Sophos_anti\-Virus, Sophos_puremessage_anti\-Virus, Sophos_small_business_suite, Suse_linux	N/A