The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Vulnerability of Computer Associates AV: denial of service via CHM

Synthesis of the vulnerability 

An attacker can create a malicious CHM file generating an infinite loop in the antivirus.
Impacted software: CA Antivirus, e-Trust Antivirus.
Severity of this computer vulnerability: 2/4.
Creation date: 25/07/2007.
Références of this announce: BID-25049, CAID 35525, CAID 35526, CVE-2007-3875, n.runs-SA-2007.024, VIGILANCE-VUL-7036.

Description of the vulnerability 

Files with CHM extension are compiled help files for Windows.

When Computer Associates antivirus analyzes a CHM file containing a reference pointing back to a previous data chunk, an infinite loop occurs.

An attacker can therefore create a malicious CHM file in order to generate a denial of service in the antivirus.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

This cybersecurity weakness impacts software or systems such as CA Antivirus, e-Trust Antivirus.

Our Vigil@nce team determined that the severity of this security vulnerability is medium.

The trust level is of type confirmed by a trusted third party, with an origin of document.

An attacker with a expert ability can exploit this vulnerability bulletin.

Solutions for this threat 

Computer Associates AV: patch for CHM and RAR.
A patch is indicated in CA's announce.
Full bulletin, software filtering, emails, fixes, ... (Request your free trial)

Computer vulnerabilities tracking service 

Vigil@nce provides a computers vulnerabilities workaround. The technology watch team tracks security threats targeting the computer system.