CVE-2009-0043

EUVD-2009-0052
The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote attackers to execute arbitrary commands via unspecified vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
10 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:C/I:C/A:C
Base Score
CVSS 3.x
EPSS Score
Percentile: 97%
Affected Products (NVD)
VendorProductVersion
caservice_level_management
3.5
caservice_metric_analysis
r11.0
caservice_metric_analysis
r11.1
caservice_metric_analysis
r11.1:sp1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/07.aspx
http://securityreason.com/securityalert/4887
http://www.securityfocus.com/archive/1/499857/100/0/threaded
http://www.securityfocus.com/bid/33161
http://www.vupen.com/english/advisories/2009/0053
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=196148
http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/07.aspx
http://securityreason.com/securityalert/4887
http://www.securityfocus.com/archive/1/499857/100/0/threaded
http://www.securityfocus.com/bid/33161
http://www.vupen.com/english/advisories/2009/0053
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=196148