Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-0043

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2009-0043
Last Modified 07 Mar 2011 10:17:49
Published 08 Jan 2009 02:30:11
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2009-0043

Summary

The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote attackers to execute arbitrary commands via unspecified vectors.

Vulnerable Systems

Application

  • Ca Service Level Management 3.5

  • Ca Service Metric Analysis R11.0

  • Ca Service Metric Analysis R11.1


References

CONFIRM - https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=196148

BID - 33161

VUPEN - ADV-2009-0053

BUGTRAQ - 20090107 CA20090107-01: CA Service Metric Analysis and CA Service Level Management smmsnmpd Arbitrary Command Execution Vulnerability

SREASON - 4887

CONFIRM - http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/07.aspx


Last Updated: 27 May 2016 10:50:06