CVE-2009-0043

Published: Jan 8, 2009Modified: Apr 23, 2026

10.0

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability: 10.0 / Impact: 10.0

Source: NVD

Description

The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote attackers to execute arbitrary commands via unspecified vectors.

Affected (4)

Products: Ca: Service Level Management, Service Metric Analysis

2 products

Service Level Management

Service Metric Analysis

Configuration A

4 vulnerable

Vulnerable Software	Affected Versions
Ca Service Level Management	Version 3.5
Ca Service Metric Analysis	Version r11.0
Ca Service Metric Analysis	Version r11.1
Ca Service Metric Analysis	Version r11.1 sp1

Related CWEs

References (12)

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/07.aspx

Source: cve@mitre.org

Vendor Advisory

http://securityreason.com/securityalert/4887

Source: cve@mitre.org

http://www.securityfocus.com/archive/1/499857/100/0/threaded

Source: cve@mitre.org

http://www.securityfocus.com/bid/33161

Source: cve@mitre.org

Patch

http://www.vupen.com/english/advisories/2009/0053

Source: cve@mitre.org

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=196148

Source: cve@mitre.org

Patch

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/07.aspx

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://securityreason.com/securityalert/4887

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/archive/1/499857/100/0/threaded

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/33161

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.vupen.com/english/advisories/2009/0053

Source: af854a3a-2127-422b-91ae-364da2661108

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=196148

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

Timeline

No history available yet.