Computer Associates Total Defense SQL Injection and Information Disclosre Vulnerability
BID:51915
Info
Computer Associates Total Defense SQL Injection and Information Disclosre Vulnerability
| Bugtraq ID: | 51915 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Feb 08 2012 12:00AM |
| Updated: | Feb 08 2012 12:00AM |
| Credit: | Andrea Micalizzi aka rgod |
| Vulnerable: |
Computer Associates Total Defense 12 SE2 Computer Associates Total Defense 12 SE1 |
| Not Vulnerable: |
Computer Associates Total Defense 12 SE3 |
Discussion
Computer Associates Total Defense SQL Injection and Information Disclosre Vulnerability
Computer Associates Total Defense is prone to multiple SQL-injection vulnerabilities and an information-disclosure vulnerability.
A successful exploit could allow an attacker to gain access to sensitive information, compromise the application, access or modify data, or exploit vulnerabilities in the underlying database. This may also allow an attacker to execute arbitrary commands through an 'exec()' function call with SYSTEM-level privileges, completely compromising an affected computer.
Total Defense versions prior to 12 SE3 are affected.
Computer Associates Total Defense is prone to multiple SQL-injection vulnerabilities and an information-disclosure vulnerability.
A successful exploit could allow an attacker to gain access to sensitive information, compromise the application, access or modify data, or exploit vulnerabilities in the underlying database. This may also allow an attacker to execute arbitrary commands through an 'exec()' function call with SYSTEM-level privileges, completely compromising an affected computer.
Total Defense versions prior to 12 SE3 are affected.
Exploit / POC
Computer Associates Total Defense SQL Injection and Information Disclosre Vulnerability
Attackers can use a browser to exploit these issues.
Attackers can use a browser to exploit these issues.
Solution / Fix
Computer Associates Total Defense SQL Injection and Information Disclosre Vulnerability
Solution:
Vendor updates are available. Please see the references for more information.
Solution:
Vendor updates are available. Please see the references for more information.
References
Computer Associates Total Defense SQL Injection and Information Disclosre Vulnerability
References:
References:
- CA Total Defense Product page (Computer Associates)
- Total Defense Suite UNC Management Console ExportReport SQL Injection Vulnerabil (Zeo Day Initiaitve )
- Total Defense Suite UNC Management Web Service Database Credentials Disclosure V (Zero Day Initiative )
- Total Defense Suite UNC Management Web Service uncsp_ViewReportsHomepage SQL Inj (Zero Day Initiative )