cbcvebase.
CVE-2009-3587
published 2009-10-13

CVE-2009-3587: Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1…

PriorityP342critical9.3CVSS 2.0
AVNACMAuNCCICAC
EPSS
7.61%
93.8th percentile
Unspecified vulnerability in the arclib component in the Anti-Virus engine in CA Anti-Virus for the Enterprise (formerly eTrust Antivirus) 7.1 through r8.1; Anti-Virus 2007 (v8) through 2009; eTrust EZ Antivirus r7.1; Internet Security Suite 2007 (v3) through Plus 2009; and other CA products allows remote attackers to cause a denial of service and possibly execute arbitrary code via a crafted RAR archive file that triggers heap corruption, a different vulnerability than CVE-2009-3588.

Affected

42 ranges· showing 25
VendorProductVersion rangeFixed in
broadcomanti-virus
broadcomanti-virus
broadcomanti-virus_for_the_enterprise
broadcomanti-virus_for_the_enterprise
broadcomarcserve_backup
broadcomcommon_services
broadcomcommon_services
broadcometrust_antivirus
broadcometrust_antivirus
broadcometrust_antivirus
broadcometrust_integrated_threat_management
broadcometrust_intrusion_detection
broadcometrust_secure_content_manager
broadcominternet_security_suite
broadcomnetwork_and_systems_management
broadcomnetwork_and_systems_management
broadcomnetwork_and_systems_management
broadcomnetwork_and_systems_management
broadcomsecure_content_manager
broadcomsecure_content_manager
broadcomunicenter_network_and_systems_management
broadcomunicenter_network_and_systems_management
broadcomunicenter_network_and_systems_management
broadcomunicenter_network_and_systems_management
caanti-virus
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.