CA has released an advisory on some serious security flaws in products that implement the Antivirus engine.
“Two vulnerabilities exist that can allow a remote attacker to cause a denial of service or possibly execute arbitrary code,” the advisory says. “CA has issued updates to address the vulnerabilities.”
The first problem is a stack-based buffer overflow occurring when the engine processes an excessively long file name contained in a .cab file.
The second problem a stack-based buffer overflow occurring when the “coffFiles” field is processed in a .cab file.
“In both instances, an attacker can cause a crash or possibly execute arbitrary code,” CA says. “CA has issued content update 30.6 to address the vulnerabilities. The updated engine is provided with content updates.”