SQL Injection Vulnerabilities in CA BrightStor Hierarchical Storage Manager
CVE-2007-5084

Currently unrated

Key Information:

Vendor: Broadcom
Status: Brightstor Hierarchical Storage Manager
Vendor: CVE Published:; 1 October 2007

What is CVE-2007-5084?

The Computer Associates BrightStor Hierarchical Storage Manager (HSM) is prone to multiple SQL injection vulnerabilities that allow remote attackers to execute arbitrary SQL commands through the CsAgent service. By utilizing specific opcodes such as 0x07, 0x08, 0x09, 0x1E, 0x32, 0x36, and 0x40, among others, attackers can exploit these vulnerabilities to manipulate database queries and potentially compromise the integrity and confidentiality of the affected systems.

References

http://secunia.com/advisories/26914

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/archive/1/480808/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://www.vupen.com/english/advisories/2007/3275

vdb-entryx_refsource_VUPEN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 1, 2007
Vulnerability Reserved
Sep 25, 2007

Broadcom

What is CVE-2007-5084?

References

Timeline