Cross-site Scripting in CA Unicenter Asset Management by Computer Associates
CVE-2005-0641

Currently unrated

Key Information:

Vendor: Broadcom
Status: Unicenter Asset Management
Vendor: CVE Published:; 2 March 2005

What is CVE-2005-0641?

A cross-site scripting (XSS) vulnerability exists within CA Unicenter Asset Management 4.0, allowing attackers to inject arbitrary HTML or web script through the names or descriptions present in report templates. This flaw can be exploited remotely, potentially compromising the integrity of web applications and enabling unauthorized actions by malicious users. Adequate validation and sanitization of user inputs are crucial to mitigate this security risk.

References

http://secunia.com/advisories/14454

third-party-advisoryx_refsource_SECUNIA

http://supportconnect.ca.com/sc/solcenter/solresults.jsp?...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Mar 4, 2005
Vulnerability published
Mar 2, 2005

Broadcom

What is CVE-2005-0641?

References

Timeline