SQL Injection Vulnerability in Computer Associates Unicenter Asset Management
CVE-2005-0642

Currently unrated

Key Information:

Vendor: Broadcom
Status: Unicenter Asset Management
Vendor: CVE Published:; 2 May 2005

What is CVE-2005-0642?

An SQL injection vulnerability exists in the Query Designer of Computer Associates' Unicenter Asset Management version 4.0. This flaw permits remote attackers to execute arbitrary SQL commands by manipulating an imported file. Successful exploitation may lead to unauthorized access to sensitive data or potentially harmful actions within the database environment. Organizations using this version are urged to review their security measures and apply necessary patches to mitigate risks.

References

http://secunia.com/advisories/14454

third-party-advisoryx_refsource_SECUNIA

http://supportconnect.ca.com/sc/solcenter/solresults.jsp?...

x_refsource_CONFIRM

Timeline

Vulnerability published
May 2, 2005
Vulnerability Reserved
Mar 4, 2005

Broadcom

What is CVE-2005-0642?

References

Timeline