CA Common Services, as used in CA Client Automation r12.5 SP01, r12.8, and r12.9; CA Network and Systems Management r11.0, r11.1, and r11.2; CA NSM Job Management Option r11.0, r11.1, and r11.2; CA Universal Job Management Agent; CA Virtual Assurance for Infrastructure Managers (aka SystemEDGE) 12.6, 12.7, 12.8, and 12.9; and CA Workload Automation AE r11, r11.3, r11.3.5, and r11.3.6 on UNIX, does not properly perform bounds checking, which allows local users to gain privileges via unspecified vectors.

No CVSS v3.1

No CVSS v3.0

Access Vector Local

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:L/AC:L/Au:N/C:P/I:P/A:P
Vendors Products
Oracle
  • Solaris
Ca
  • Workload Automation Ae
  • Virtual Assurance For Infrastructure Managers
  • Network And Systems Management
  • Nsm Job Management Option
  • Client Automation
  • Universal Job Management Agent
Ibm
  • Aix
Linux
  • Linux Kernel
Hp
  • Hp-ux

Configuration 1 [-]

AND
OR cpe:2.3:a:ca:client_automation:r12.5:sp01:*:*:*:*:*:*
cpe:2.3:a:ca:client_automation:r12.8:*:*:*:*:*:*:*
cpe:2.3:a:ca:client_automation:r12.9:*:*:*:*:*:*:*
cpe:2.3:a:ca:network_and_systems_management:r11.2:*:*:*:*:*:*:*
cpe:2.3:a:ca:nsm_job_management_option:r11.0:*:*:*:*:*:*:*
cpe:2.3:a:ca:nsm_job_management_option:r11.1:*:*:*:*:*:*:*
cpe:2.3:a:ca:nsm_job_management_option:r11.2:*:*:*:*:*:*:*
cpe:2.3:a:ca:universal_job_management_agent:-:*:*:*:*:*:*:*
cpe:2.3:a:ca:virtual_assurance_for_infrastructure_managers:12.6:*:*:*:*:*:*:*
cpe:2.3:a:ca:virtual_assurance_for_infrastructure_managers:12.7:*:*:*:*:*:*:*
cpe:2.3:a:ca:virtual_assurance_for_infrastructure_managers:12.8:*:*:*:*:*:*:*
cpe:2.3:a:ca:virtual_assurance_for_infrastructure_managers:12.9:*:*:*:*:*:*:*
cpe:2.3:a:ca:workload_automation_ae:r11:*:*:*:*:*:*:*
cpe:2.3:a:ca:workload_automation_ae:r11.3:*:*:*:*:*:*:*
cpe:2.3:a:ca:workload_automation_ae:r11.3.5:*:*:*:*:*:*:*
cpe:2.3:a:ca:workload_automation_ae:r11.3.6:*:*:*:*:*:*:*
OR cpe:2.3:o:hp:hp-ux:*:*:*:*:*:*:*:*
cpe:2.3:o:ibm:aix:*:*:*:*:*:*:*:*
cpe:2.3:o:linux:linux_kernel:*:*:*:*:*:*:*:*
cpe:2.3:o:oracle:solaris:-:*:*:*:*:*:*:*
References
Link Resource
http://www.ca.com/us/support/ca-support-online/product-content/recommended-reading/security-notices/ca20150604-01-security-notice-for-ca-common-services.aspx Vendor Advisory
http://www.securityfocus.com/bid/75033
http://www.securitytracker.com/id/1032512
http://www.securitytracker.com/id/1032513
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2015-06-17T10:00:00

Updated: 2016-12-02T20:57:01

Reserved: 2015-04-16T00:00:00

Link: CVE-2015-3317

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2015-06-17T10:59:02.227

Modified: 2021-04-09T18:50:38.677

Link: CVE-2015-3317

JSON object: View

cve-icon Redhat Information

No data.

CWE