EUVD-2006-4887

Malware in sbrugna...

CA eSCC r8/1.0,eTrust Audit r8/1.5 Audit Event System Unspecified Replay Attack

No description provided by source. source: http://www.securityfocus.com/bid/20139/info CA eTrust Security Command Center eSCC and eTrust Audit are prone to multiple vulnerabilities, including: - an information-disclosure issue - an arbitrary-file-deletion issue - a replay issue. These...

CA eTrust Security Command Center and eTrust Audit 存在多个漏洞

CA eTrust Security Command Center eSCC和eTrust Audit是CA产品安全命令执行和审核程序。 CA eTrust Security Command Center eSCC和eTrust Audit存在多个安全问题，远程攻击者可以利用漏洞获得敏感信息，执行任意文件删除或者重播攻击。 第一个问题是允许攻击者发现在windows平台上的web服务器路径信息，此漏洞影响eTrust Security Command Center Server 1.0, r8, r8 SP1 CR1, 和r8 SP1 CR2版本。...

CVE-2006-4901

Computer Associates CA eTrust Security Command Center 1.0 and r8 up to SP1 CR2, and eTrust Audit 1.5 and r8, allows remote attackers to spoof alerts and conduct replay attacks by invoking eTSAPISend.exe with the desired arguments...

CVE-2006-4900

CVE-2006-4900 affects Computer Associates eTrust Security Command Center (SCC) 1.0 and r8 up to SP1 CR2. The vulnerability is a directory traversal in the eSCCAdHocHtmlFile parameter to eSMPAuditServlet caused by improper handling in getadhochtml, allowing remote authenticated users to read and d...

CVE-2006-4901

CVE-2006-4901 affects CA eTrust Security Command Center (SCC) 1.0 and r8 up to SP1 CR2 and eTrust Audit 1.5 and r8. The vulnerability allows remote attackers to spoof alerts and perform replay attacks by invoking eTSAPISend.exe with crafted arguments. Affected products include SCC 1.0, SCC r8, SC...