CA Service Metric Analysis和Service Level Managemen'smmsnmpd'任意命令执行漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1117208 漏洞类型 权限许可和访问控制
发布时间 2009-01-07 更新时间 2009-01-12
CVE编号 CVE-2009-0043 CNNVD-ID CNNVD-200901-086
漏洞平台 Windows CVSS评分 10.0
|漏洞来源
https://www.exploit-db.com/exploits/32711
https://www.securityfocus.com/bid/33161
https://cxsecurity.com/issue/WLB-2009010142
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200901-086
|漏洞详情
CAServiceMetricAnalysis和ServiceLevelManagement都是CA的服务管理产品。ServiceMetricAnalysis和ServiceLevelManagement没有充分地限制对smmsnmpd服务的访问,远程攻击者可以在该服务的环境中执行任意命令。
|漏洞EXP
source: http://www.securityfocus.com/bid/33161/info

Multiple CA Service Management products are prone to a vulnerability that attackers can leverage to execute arbitrary commands. This issue is the result of insufficient access restrictions.

Successful attacks can compromise the affected application and possibly the underlying computer.

The following applications are vulnerable:

Service Metric Analysis 11.0, 11.1, and 11.1 SP1
Service Level Management 3.5 

Submitting the following command through netcat or telnet is sufficient to exploit this issue:

[ipconfig /all]
|受影响的产品
Computer Associates Service Metric Analysis 11.1 SP1 Computer Associates Service Metric Analysis 11.1 Computer Associates Service Metric Analysis 11.0 Computer Associates Service Level Management 3.5
|参考资料

来源:support.ca.com
链接:https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=196148
来源:BID
名称:33161
链接:http://www.securityfocus.com/bid/33161
来源:BUGTRAQ
名称:20090107CA20090107-01:CAServiceMetricAnalysisandCAServiceLevelManagementsmmsnmpdArbitraryCommandExecutionVulnerability
链接:http://www.securityfocus.com/archive/1/archive/1/499857/100/0/threaded
来源:VUPEN
名称:ADV-2009-0053
链接:http://www.frsirt.com/english/advisories/2009/0053
来源:SREASON
名称:4887
链接:http://securityreason.com/securityalert/4887
来源:community.ca.com
链接:http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/07.aspx