Vulnerabilities > Broadcom > Unicenter Asset Management

DATE CVE VULNERABILITY TITLE RISK
2007-07-26 CVE-2007-0060 Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11 Build 54_4 on Windows and NetWare, as used in CA Advantage Data Transport, eTrust Admin, certain BrightStor products, certain CleverPath products, and certain Unicenter products, allows remote attackers to execute arbitrary code via a crafted message to TCP port 3104.
network
broadcom ca
critical
9.3
2005-08-23 CVE-2005-2669 Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows remote attackers to execute arbitrary commands via spoofed CAFT packets.
network
low complexity
broadcom ca
critical
10.0
2005-08-23 CVE-2005-2668 Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allow remote attackers to execute arbitrary code via unknown vectors.
network
low complexity
broadcom ca
critical
10.0
2005-08-23 CVE-2005-2667 Unknown vulnerability in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows attackers to cause a denial of service via unknown vectors, aka the "CAM TCP port vulnerability."
network
low complexity
broadcom ca
5.0
2005-05-02 CVE-2005-0642 Unspecified vulnerability in Broadcom Unicenter Asset Management 4.0
SQL injection vulnerability in the Query Designer for Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 allows remote attackers to execute arbitrary SQL via an imported file.
network
low complexity
broadcom
7.5
2005-03-02 CVE-2005-0641 Unspecified vulnerability in Broadcom Unicenter Asset Management 4.0
Cross-site scripting (XSS) vulnerability in the Reporter for Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 allows remote attackers to inject arbitrary HTML or web script via the (1) name or (2) description in a report template.
network
broadcom
4.3
2005-03-02 CVE-2005-0640 Unspecified vulnerability in Broadcom Unicenter Asset Management 4.0
Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 does not properly initialize the "Change Credentials for Database" window, which allows local users to recover the SQL Admin password via certain methods.
local
low complexity
broadcom
4.6