Published: 08/01/2009 Updated: 11/10/2018

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote malicious users to execute arbitrary commands via unspecified vectors.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ca service level management 3.5
ca service metric analysis r11.1
ca service metric analysis r11.0

source: wwwsecurityfocuscom/bid/33161/info Multiple CA Service Management products are prone to a vulnerability that attackers can leverage to execute arbitrary commands This issue is the result of insufficient access restrictions Successful attacks can compromise the affected application and possibly the underlying computer The foll ...

CWE-264 http://www.securityfocus.com/bid/33161 http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/07.aspx https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=196148 http://securityreason.com/securityalert/4887 http://www.vupen.com/english/advisories/2009/0053 http://www.securityfocus.com/archive/1/499857/100/0/threaded https://nvd.nist.gov https://www.exploit-db.com/exploits/32711/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2009-0043

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect