unicenter software vulnerabilities
vulnerabilities.aspcode.net
Searching unicenter software vulnerabilities
Unknown "Denial of Service Attack" vulnerabilit
vulnerability
|
Associates
|
Computer
|
Attack"
|
Unknown
|
"Denial
|
Service
|
Unknown "Denial of Service Attack" vulnerability in Computer Associates (CA) Unicenter Remote Control (URC) 6.0 allows attackers to cause a denial of service (CPU consumption in URC host service).
Unknown "potential system security vulnerabilit
vulnerability"
|
"potential
|
Associates
|
Computer
|
security
|
Unknown
|
system
|
Unknown "potential system security vulnerability" in Computer Associates (CA) Unicenter Remote Control 5.0 through 5.2, and ControlIT 5.0 and 5.1, may allow attackers to gain privileges to the local system account.
The "Forgot your Password" link in Computer Ass
Associates
|
Password"
|
Computer
|
"Forgot
|
your
|
link
|
The "Forgot your Password" link in Computer Associates (CA) Unicenter Management Portal 2.0 and 3.1 displays different error messages for users that exist and users that do not exist, which could allow remote attackers to guess valid usernames.
Multiple stack-based buffer overflows in Agent
stack-based
|
overflows
|
Services
|
Multiple
|
Common
|
buffer
|
Agent
|
Multiple stack-based buffer overflows in Agent Common Services (1) cam.exe and (2) awservices.exe in Unicenter TNG 2.4 allow remote attackers to execute arbitrary code.
Computer Associates Unicenter Common Services 3
TndAddNspTmpbat
|
privileges
|
Associates
|
cleartext
|
Unicenter
|
database
|
password
|
Services
|
Computer
|
earlier
|
Common
|
stores
|
allow
|
local
|
users
|
which
|
could
|
"SA"
|
gain
|
file
|
Computer Associates Unicenter Common Services 3.0 and earlier stores the database "SA" password in cleartext in the TndAddNspTmp.bat file, which could allow local users to gain privileges.
Unspecified vulnerability in Jetty HTTP Server,
vulnerability
|
Unspecified
|
Server
|
Jetty
|
used
|
HTTP
|
Unspecified vulnerability in Jetty HTTP Server, as used in (1) IBM Trading Partner Interchange before 4.2.4, (2) CA Unicenter Web Services Distributed Management (WSDM) before 3.11, and possibly other products, allows remote attackers to read arbitrary files via a .. (dot dot) in the URL.
Computer Associates (CA) Unicenter Asset Manage
Associates
|
Computer
|
Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 does not properly initialize the "Change Credentials for Database" window, which allows local users to recover the SQL Admin password via certain methods.
Cross-site scripting (XSS) vulnerability in the
Cross-site
|
scripting
|
Cross-site scripting (XSS) vulnerability in the Reporter for Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 allows remote attackers to inject arbitrary HTML or web script via the (1) name or (2) description in a report template.
SQL injection vulnerability in the Query Design
vulnerability
|
Associates
|
injection
|
Designer
|
Computer
|
Query
|
SQL
|
SQL injection vulnerability in the Query Designer for Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 allows remote attackers to execute arbitrary SQL via an imported file.
The DM Primer (dmprimer.exe) in the DM Deployme
Primer
|
The DM Primer (dmprimer.exe) in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption or application hang) via a large network packet, which causes a WSAEMESGSIZE error code that is not handled, leading to a thread exit.
The DM Primer in the DM Deployment Common Compo
Deployment
|
Associates
|
Component
|
Computer
|
Primer
|
Common
|
The DM Primer in the DM Deployment Common Component in Computer Associates (CA) BrightStor Mobile Backup r4.0, BrightStor ARCserve Backup for Laptops & Desktops r11.0, r11.1, r11.1 SP1, Unicenter Remote Control 6.0, 6.0 SP1, CA Desktop Protection Suite r2, CA Server Protection Suite r2, and CA Business Protection Suite r2 allows remote attackers to cause a denial of service (CPU consumption and log file consumption) via unspecified "unrecognized network messages" that are not properly handled.
Unspecified vulnerability in CA CleverPath Port
471001_179_060830
|
vulnerability
|
credentials
|
maintenance
|
Unspecified
|
BrightStor
|
CleverPath
|
including
|
Unicenter
|
Security
|
properly
|
multiple
|
products
|
session
|
Command
|
another
|
started
|
servers
|
inherit
|
through
|
version
|
before
|
eTrust
|
handle
|
server
|
Center
|
Portal
|
might
|
which
|
cause
|
store
|
share
|
used
|
user
|
Aion
|
does
|
r102
|
r111
|
time
|
data
|
same
|
r10
|
BPM
|
not
|
Unspecified vulnerability in CA CleverPath Portal before maintenance version 4.71.001_179_060830, as used in multiple products including BrightStor Portal r11.1, CleverPath Aion BPM r10 through r10.2, eTrust Security Command Center r1 and r8, and Unicenter, does not properly handle when multiple Portal servers are started at the same time and share the same data store, which might cause a Portal user to inherit the session and credentials of a user who is on another Portal server.
Stack-based buffer overflow in the Message Queu
Stack-based
|
overflow
|
Queuing
|
Message
|
Server
|
buffer
|
Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11 Build 54_4 on Windows and NetWare, as used in CA Advantage Data Transport, eTrust Admin, certain BrightStor products, certain CleverPath products, and certain Unicenter products, allows remote attackers to execute arbitrary code via a crafted message to TCP port 3104.
Software vulnerabilities results 1 to 14 of 14
Page:
1