CVE-2007-2864

N/A Unknown

Published: June 06, 2007 Modified: April 23, 2026

Description

Stack-based buffer overflow in the Anti-Virus engine before content update 30.6 in multiple CA (formerly Computer Associates) products allows remote attackers to execute arbitrary code via a large invalid value of the coffFiles field in a .CAB file.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://secunia.com/advisories/25570

Source: cve@mitre.org

Patch Vendor Advisory

http://supportconnectw.ca.com/public/antivirus/infodocs/caantivirus-securitynotice.asp

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/105105

Source: cve@mitre.org

US Government Resource

http://www.osvdb.org/35245

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/470602/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/470754/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/24330

Source: cve@mitre.org

Patch

http://www.securitytracker.com/id?1018199

Source: cve@mitre.org

http://www.vupen.com/english/advisories/2007/2072

Source: cve@mitre.org

http://www.zerodayinitiative.com/advisories/ZDI-07-035.html

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/34737

Source: cve@mitre.org

http://secunia.com/advisories/25570