Name of the Vulnerable Software and Affected Versions:

CA Anti-Virus for the Enterprise versions 7.1 through r8.1

CA Anti-Virus 2007 through 2009

CA eTrust EZ Antivirus version r7.1

CA Internet Security Suite 2007 through Plus 2009

Description:

The issue is related to a crafted RAR archive file that triggers stack corruption, leading to a denial of service. This can be caused by remote attackers.

Recommendations:

For CA Anti-Virus for the Enterprise versions 7.1 through r8.1, consider updating to a version that is not affected by this issue.

For CA Anti-Virus 2007 through 2009, update to a newer version to resolve the issue.

For CA eTrust EZ Antivirus version r7.1, update to a version that is not vulnerable.

For CA Internet Security Suite 2007 through Plus 2009, update to a version that does not contain the vulnerable component.