HTTP: CA Total Defense Suite UNCWS getDBConfigSettings Credential Information Disclosure
This signature detects attempts to exploit a known information disclosure vulnerability in CA Total Defense Suite. Its due to insufficient access control when handling requests for the web service getDBConfigSettings. Attackers can exploit this issue to obtain sensitive information that may lead to further attacks.
Extended Description
Computer Associates Total Defense is prone to a remote code-execution vulnerability. Successfully exploiting this issue will allow attackers to execute arbitrary code with elevated privileges, completely compromising affected computers. Failed exploit attempts will likely crash the affected 'UNCWS' service. Total Defense r12 is vulnerable; other versions may also be affected.
Affected Products
Computer_associates total_defense
Short Name
HTTP:INFO-LEAK:CA-TOTAL-DEFENSE
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CA CVE-2011-1655 Credential Defense Disclosure Information Suite Total UNCWS bid:47356 getDBConfigSettings
Release Date
06/15/2011
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Computer_associates
CVSS Score
7.5