11 matches found
EUVD-2005-0643
Malware in sbrugna...
EUVD-2005-0641
Malware in sbrugna...
CA Products That Embed Ingres Multiple Vulnerabilities
Title: CA Products That Embed Ingres Multiple Vulnerabilities CA Advisory Date: 2008-08-01 Reported By: iDefense Labs Impact: A remote attacker can execute arbitrary code, gain privileges, or cause a denial of service condition. Summary: CA products that embed Ingres contain multiple...
CA Unicenter DSM ITRM Legends ActiveX integer overflow
Overview The CA Unicenter DSM ITRM Legends ActiveX control contains an integer overflow vulnerability, which can allow a remote attacker to execute arbitrary code on a vulnerable system. Description CA Unicenter DSM ITRM Legends is an ActiveX control that is included with multiple CA products. Th...
CVE-2005-0642
SQL injection vulnerability in the Query Designer for Computer Associates CA Unicenter Asset Management UAM 4.0 allows remote attackers to execute arbitrary SQL via an imported file...
CVE-2005-0641
Cross-site scripting XSS vulnerability in the Reporter for Computer Associates CA Unicenter Asset Management UAM 4.0 allows remote attackers to inject arbitrary HTML or web script via the 1 name or 2 description in a report template...
CVE-2005-0642
SQL injection vulnerability in the Query Designer for Computer Associates CA Unicenter Asset Management UAM 4.0 allows remote attackers to execute arbitrary SQL via an imported file...
CVE-2005-0642
The CVE-2005-0642 issue affects CA Unicenter Asset Management (UAM) 4.0, specifically the Query Designer component. The vulnerability is a SQL injection that allows remote attackers to execute arbitrary SQL through an imported file. The root cause is improper handling of input in the Query Design...
CVE-2005-0641
CVE-2005-0641 affects the CA Unicenter Asset Management Reporter (UAM) 4.0, where a flaw in report templates (fields: name and description) enables cross-site scripting (XSS). The root cause is a vulnerability in how the report template content is handled, allowing remote attackers to inject arbi...
CVE-2005-0640
Computer Associates CA Unicenter Asset Management UAM 4.0 does not properly initialize the "Change Credentials for Database" window, which allows local users to recover the SQL Admin password via certain methods...
CVE-2005-0641
Cross-site scripting XSS vulnerability in the Reporter for Computer Associates CA Unicenter Asset Management UAM 4.0 allows remote attackers to inject arbitrary HTML or web script via the 1 name or 2 description in a report template...