Signature Detail
Short Name |
HTTP:INFO-LEAK:CA-TOTAL-DEFENSE |
|---|---|
Severity |
Medium |
Recommended |
Yes |
Recommended Action |
Drop |
Category |
HTTP |
Keywords |
CA Total Defense Suite UNCWS getDBConfigSettings Credential Information Disclosure |
Release Date |
2011/06/15 |
Update Number |
1939 |
Supported Platforms |
idp-4.0+, isg-3.1.134269+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: CA Total Defense Suite UNCWS getDBConfigSettings Credential Information Disclosure
This signature detects attempts to exploit a known information disclosure vulnerability in CA Total Defense Suite. Its due to insufficient access control when handling requests for the web service getDBConfigSettings. Attackers can exploit this issue to obtain sensitive information that may lead to further attacks.
Extended Description
Computer Associates Total Defense is prone to a remote code-execution vulnerability. Successfully exploiting this issue will allow attackers to execute arbitrary code with elevated privileges, completely compromising affected computers. Failed exploit attempts will likely crash the affected 'UNCWS' service. Total Defense r12 is vulnerable; other versions may also be affected.
Affected Products
- Computer Associates Total Defense 12
References
- BugTraq: 47356
- CVE: CVE-2011-1655