Strix
26.1K

CVE-2007-3875

UnknownEPSS 3.54%

Last modified

CVE-2007-3875 is a vulnerability of currently unknown severity. arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) 8 and certain other CA products allows remote attackers to cause a denial of service (infinite loop and loss of antivirus functionality) via an invalid "previous listing chunk number" field in a CHM file.. EPSS estimates a 3.54% chance of exploitation in the next 30 days.

Description

arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) 8 and certain other CA products allows remote attackers to cause a denial of service (infinite loop and loss of antivirus functionality) via an invalid "previous listing chunk number" field in a CHM file.

Metrics

EPSS Probability
3.54%

87.8th percentile

Probability of exploitation in the next 30 days. Learn more

Affected Software

VendorProductVersionsUpdate
BroadcomAnti-Spyware2007
BroadcomAnti-Virus For The Enterprise<= 8
BroadcomAnti-Virus For The Enterprise7.0
BroadcomAnti-Virus For The Enterprise7.1
BroadcomAnti-Virus For The Enterprise8
BroadcomAnti-Virus For The Enterprise8.1
BroadcomAnti Virus SdkAll versions
BroadcomAntispyware For The Enterprise8
BroadcomAntispyware For The Enterprise8.1
BroadcomAntivirus SdkAll versions
BroadcomBrightstor Arcserve Backup9.01
BroadcomBrightstor Arcserve Backup11.1
BroadcomBrightstor Arcserve Backup11.5
BroadcomBrightstor Arcserve ClientAll versions
BroadcomBrightstor Enterprise Backup10.5
BroadcomBrigthstor Arcserve Client For WindowsAll versions
BroadcomCommon Services11
BroadcomCommon Services11.1
BroadcomEtrust Antivirus8
BroadcomEtrust Antivirus Gateway7.1
BroadcomEtrust Ez Antivirus6.1
BroadcomEtrust Ez Antivirus7
BroadcomEtrust Ez Armor1
BroadcomEtrust Ez Armor2
BroadcomEtrust Ez Armor3
BroadcomEtrust Internet Security Suite1
BroadcomEtrust Internet Security Suite2
BroadcomEtrust Intrusion Detection2.0
BroadcomEtrust Intrusion Detection3.0
BroadcomInternet Security Suite3.0
BroadcomSecure Content Manager1.1
BroadcomSecure Content Manager8.0
BroadcomThreat Manager8
BroadcomUnicenter Network And Systems Management3.0
BroadcomUnicenter Network And Systems Management3.1
BroadcomUnicenter Network And Systems Management11
BroadcomUnicenter Network And Systems Management11.1
CaBrightstor Arcserve Backup11
CaEtrust Intrusion Detection3.0Sp1
CaProtection Suitesr2
CaProtection Suitesr3

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2007-3875?
arclib.dll before 7.3.0.9 in CA Anti-Virus (formerly eTrust Antivirus) 8 and certain other CA products allows remote attackers to cause a denial of service (infinite loop and loss of antivirus functionality) via an invalid "previous listing chunk number" field in a CHM file.
How severe is CVE-2007-3875?
Severity scoring for CVE-2007-3875 is pending analysis. The EPSS model estimates a 3.54% probability of exploitation in the next 30 days.
How do I fix CVE-2007-3875?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2007-3875?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST