Lucene search
K

53 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2011-1654

Malware in sbrugna...

7.5CVSS6.3AI score0.11423EPSS
Exploits0References12
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

CA Total Defense Suite reGenerateReports Stored Procedure SQL Injection

No description provided by source. $Id: catotaldefenseregeneratereports.rb 13810 2011-10-02 17:03:23Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on...

7.1AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2012/05/28 12:0 a.m.1 views

CA Total Defense Suite UNCWS exportReport SQL Injection

An SQL injection vulnerability has been reported in CA Total Defense Suite...

8.2AI score
Exploits0
Check Point Advisories
Check Point Advisories
added 2012/04/16 12:0 a.m.27 views

CA Total Defense Suite UNCWS getDBConfigSettings Credential Information Disclosure (CVE-2011-1655)

An information disclosure vulnerability has been reported in CA Total Defense Suite. The vulnerability is due to insufficient access control when handling requests to the getDBConfigSettings web method. A remote attacker may exploit this vulnerability by sending a specially crafted SOAP xml to th...

7.5CVSS6.9AI score0.11975EPSS
Exploits0
Saint
Saint
added 2012/03/20 12:0 a.m.23 views

CA Total Defense UNCWS exportReport SQL Injection

Added: 03/20/2012 OSVDB: 78930 Background CA Total Defense is a combined host-based anti-virus, anti-spyware, firewall, and IPS solution. Problem CA Total Defense includes a web service management component, which in version r12 prior to SE3, fails to validate certain parameters. The exportReport...

0.8AI score
Exploits0
Saint
Saint
added 2012/03/20 12:0 a.m.15 views

CA Total Defense UNCWS exportReport SQL Injection

Added: 03/20/2012 OSVDB: 78930 Background CA Total Defense is a combined host-based anti-virus, anti-spyware, firewall, and IPS solution. Problem CA Total Defense includes a web service management component, which in version r12 prior to SE3, fails to validate certain parameters. The exportReport...

7.9AI score
Exploits0
Saint
Saint
added 2012/03/20 12:0 a.m.19 views

CA Total Defense UNCWS exportReport SQL Injection

Added: 03/20/2012 OSVDB: 78930 Background CA Total Defense is a combined host-based anti-virus, anti-spyware, firewall, and IPS solution. Problem CA Total Defense includes a web service management component, which in version r12 prior to SE3, fails to validate certain parameters. The exportReport...

0.8AI score
Exploits0
Saint
Saint
added 2012/03/20 12:0 a.m.18 views

CA Total Defense UNCWS exportReport SQL Injection

Added: 03/20/2012 OSVDB: 78930 Background CA Total Defense is a combined host-based anti-virus, anti-spyware, firewall, and IPS solution. Problem CA Total Defense includes a web service management component, which in version r12 prior to SE3, fails to validate certain parameters. The exportReport...

7.9AI score
Exploits0
securityvulns
securityvulns
added 2012/02/13 12:0 a.m.28 views

CA Total Defense multiple security vulnerabilities

SQL injection, information leakage...

2AI score
Exploits0References3
Zero Day Initiative
Zero Day Initiative
added 2012/02/08 12:0 a.m.19 views

Total Defense Suite UNC Management Web Service Database Credentials Disclosure Vulnerability

This vulnerability allows attackers to remotely obtain domain credentials on vulnerable installations of CA Total Defense Suite UNC Management Web Service. Authentication is not required to exploit this vulnerability. The specific flaw exists within the AppCode.dll service listening by default on...

7.5CVSS6.5AI score
Exploits0
Packet Storm
Packet Storm
added 2011/10/04 12:0 a.m.35 views

CA Total Defense Suite reGenerateReports Stored Procedure SQL Injection

$Id: catotaldefenseregeneratereports.rb 13810 2011-10-02 17:03:23Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

10CVSS0.2AI score0.88655EPSS
Exploits12
Metasploit
Metasploit
added 2011/10/02 3:53 p.m.53 views

CA Total Defense Suite reGenerateReports Stored Procedure SQL Injection

This module exploits a SQL injection flaw in CA Total Defense Suite R12. When supplying a specially crafted soap request to '/UNCWS/Management.asmx', an attacker can abuse the reGenerateReports stored procedure by injecting arbitrary sql statements into the ReportIDs element. This module requires...

10CVSS0.6AI score0.88655EPSS
Exploits12
Exploit DB
Exploit DB
added 2011/10/02 12:0 a.m.38 views

CA Total Defense Suite - reGenerateReports Stored procedure SQL Injection (Metasploit)

$Id: catotaldefenseregeneratereports.rb 13810 2011-10-02 17:03:23Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use...

10CVSS7AI score0.88655EPSS
Exploits12
0day.today
0day.today
added 2011/10/01 12:0 a.m.56 views

CA Total Defense Suite reGenerateReports Stored Procedure SQL Injection

Exploit for cgi platform in category web applications $Id: catotaldefenseregeneratereports.rb 13810 2011-10-02 17:03:23Z swtornio $ This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more...

7.1AI score0.88655EPSS
Exploits12
securityvulns
securityvulns
added 2011/07/22 12:0 a.m.66 views

ZDI-11-237: CA Total Defense Suite Gateway Security Malformed HTTP Packet Remote Code Execution Vulnerability

ZDI-11-237: CA Total Defense Suite Gateway Security Malformed HTTP Packet Remote Code Execution Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-11-237 July 20, 2011 -- CVE ID: CVE-2011-2667 -- CVSS: 10, AV:N/AC:L/Au:N/C:C/I:C/A:C -- Affected Vendors: CA -- Affected Products: CA Tota...

10CVSS0.7AI score0.16205EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2011/07/20 12:0 a.m.33 views

CA Total Defense Suite Gateway Security Malformed HTTP Packet Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of CA Total Defense Suite r12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Icihttp.exe module CA Gateway Security for HTTP, which responds to...

10CVSS3.8AI score0.16205EPSS
Exploits0References1
Check Point Advisories
Check Point Advisories
added 2011/05/17 12:0 a.m.40 views

CA Total Defense Suite UNCWS Multiple Report Stored Procedure SQL Injections (CVE-2011-1653)

CA Total Defense combines CA Anti-Virus, CA Anti-Spyware, CA Gateway Security and CA Host-Based Intrusion Prevention System. The unified network control UNC offers network access protection by validating endpoints requesting network access. Multiple SQL Injection vulnerabilities have been reporte...

10CVSS8.3AI score0.88655EPSS
Exploits12
Saint
Saint
added 2011/05/12 12:0 a.m.29 views

CA Total Defense UNCWS DeleteReports SQL Injection

Added: 05/12/2011 CVE: CVE-2011-1653 BID: 47355 Background CA Total Defense is a combined host-based anti-virus, anti-spyware, firewall, and IPS solution. Problem CA Total Defense includes a web service management component, which in version r12 prior to SE2, fails to validate certain parameters...

10CVSS7.2AI score0.88655EPSS
Exploits12
Saint
Saint
added 2011/05/12 12:0 a.m.28 views

CA Total Defense UNCWS DeleteReports SQL Injection

Added: 05/12/2011 CVE: CVE-2011-1653 BID: 47355 Background CA Total Defense is a combined host-based anti-virus, anti-spyware, firewall, and IPS solution. Problem CA Total Defense includes a web service management component, which in version r12 prior to SE2, fails to validate certain parameters...

10CVSS7.2AI score0.88655EPSS
Exploits12
Saint
Saint
added 2011/05/12 12:0 a.m.40 views

CA Total Defense UNCWS DeleteReports SQL Injection

Added: 05/12/2011 CVE: CVE-2011-1653 BID: 47355 Background CA Total Defense is a combined host-based anti-virus, anti-spyware, firewall, and IPS solution. Problem CA Total Defense includes a web service management component, which in version r12 prior to SE2, fails to validate certain parameters...

10CVSS7.1AI score0.88655EPSS
Exploits12
Rows per page
Query Builder