CVE-2016-9795

7.8HIGH

Key Information:

Vendor
Broadcom
Status
Ca Workload Automation Ae
Client Automation
Systemedge
Systems Performance For Infrastructure Managers
Vendor
CVE Published:
27 January 2017

Badges

👾 Exploit Exists🟡 Public PoC

Summary

The casrvc program in CA Common Services, as used in CA Client Automation 12.8, 12.9, and 14.0; CA SystemEDGE 5.8.2 and 5.9; CA Systems Performance for Infrastructure Managers 12.8 and 12.9; CA Universal Job Management Agent 11.2; CA Virtual Assurance for Infrastructure Managers 12.8 and 12.9; CA Workload Automation AE 11, 11.3, 11.3.5, and 11.3.6 on AIX, HP-UX, Linux, and Solaris allows local users to modify arbitrary files and consequently gain root privileges via vectors related to insufficient validation.

Exploit Proof of Concept (PoC)

PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.

CA-Common-Services-privilege-escalation-cve-2016-9795-revisited
Created by blogresponder

References

http://www.securityfocus.com/archive/1/540062/100/0/threaded
mailing-listx_refsource_BUGTRAQ
https://www.ca.com/us/services-support/ca-support/ca-supp...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1037730
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
7.8
Severity:
HIGH
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Local
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • 🟡

    Public PoC available

  • 👾

    Exploit known to exist

  • Vulnerability published

  • Vulnerability Reserved

.