Vulnerabilities > Broadcom > Unicenter Asset Management > 4.0

DATE	CVE	VULNERABILITY TITLE	RISK
2007-07-26	CVE-2007-0060	Stack-based buffer overflow in the Message Queuing Server (Cam.exe) in CA (formerly Computer Associates) Message Queuing (CAM / CAFT) software before 1.11 Build 54_4 on Windows and NetWare, as used in CA Advantage Data Transport, eTrust Admin, certain BrightStor products, certain CleverPath products, and certain Unicenter products, allows remote attackers to execute arbitrary code via a crafted message to TCP port 3104. network broadcom ca critical	9.3
2005-08-23	CVE-2005-2669	Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows remote attackers to execute arbitrary commands via spoofed CAFT packets. network low complexity broadcom ca critical	10.0
2005-08-23	CVE-2005-2668	Multiple buffer overflows in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allow remote attackers to execute arbitrary code via unknown vectors. network low complexity broadcom ca critical	10.0
2005-08-23	CVE-2005-2667	Unknown vulnerability in Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows attackers to cause a denial of service via unknown vectors, aka the "CAM TCP port vulnerability." network low complexity broadcom ca	5.0
2005-05-02	CVE-2005-0642	Unspecified vulnerability in Broadcom Unicenter Asset Management 4.0 SQL injection vulnerability in the Query Designer for Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 allows remote attackers to execute arbitrary SQL via an imported file. network low complexity broadcom	7.5
2005-03-02	CVE-2005-0641	Unspecified vulnerability in Broadcom Unicenter Asset Management 4.0 Cross-site scripting (XSS) vulnerability in the Reporter for Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 allows remote attackers to inject arbitrary HTML or web script via the (1) name or (2) description in a report template. network broadcom	4.3
2005-03-02	CVE-2005-0640	Unspecified vulnerability in Broadcom Unicenter Asset Management 4.0 Computer Associates (CA) Unicenter Asset Management (UAM) 4.0 does not properly initialize the "Change Credentials for Database" window, which allows local users to recover the SQL Admin password via certain methods. local low complexity broadcom	4.6

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.