Vulnerabilities for Cleverpath portal (...)

Vulnerabilities for 'Cleverpath portal'

2007-04-25

CVE-2007-2230

CWE-89

SQL injection vulnerability in CA Clever Path Portal allows remote authenticated users to execute limited SQL commands and retrieve arbitrary database contents via (1) the ofinterest parameter in a light search query, (2) description parameter in the advanced search query, and possibly other vectors.

2006-12-19

CVE-2006-6641

CWE-Other

Unspecified vulnerability in CA CleverPath Portal before maintenance version 4.71.001_179_060830, as used in multiple products including BrightStor Portal r11.1, CleverPath Aion BPM r10 through r10.2, eTrust Security Command Center r1 and r8, and Unicenter, does not properly handle when multiple Portal servers are started at the same time and share the same data store, which might cause a Portal user to inherit the session and credentials of a user who is on another Portal server.

2005-12-10

CVE-2005-4150

Cross-site scripting (XSS) vulnerability in the portal login page in Computer Associates CleverPath 4.7 allows remote attackers to execute Javascript via unknown vectors.

>>> Vendor: CA 195 Products

Etrust intrusion detection

Etrust access control

Inoculateit agent for exchange

Ccc harvest

Arcserve backup 2000

Mlink

Unicenter remote control host

Unicenter remote control

Unicenter remote control option

Brightstor arcserve backup

Etrust antivirus

Etrust antivirus gateway

Etrust ez antivirus

Etrust ez armor

Etrust secure content manager

Unicenter tng

Etrust antivirus ee

Common services

Unicenter network and systems management

Unicenter serviceplus service desk

Unicenter web services distributed management

License software

Unicenter asset management

Brightstor arcserve backup agent

Brightstor enterprise backup

Brightstor enterprise backup agent

Etrust ez armor le

Vet antivirus

Etrust siteminder

Brightstor arcserve backup hp

Advantage data transport

Adviseit

Brightstor portal

Brightstor san manager

Cleverpath ecm

Cleverpath olap

Cleverpath predictive analysis server

Etrust admin

Message queuing

Unicenter application performance monitor

Unicenter data transport option

Unicenter enterprise job manager

Unicenter jasmine

Unicenter management

Unicenter nsm

Unicenter performance management

Unicenter service level management

Unicenter software delivery

Cleverpath aion

Messaging

Unicenter management portal

Unicenter nsm wireless network management option

Igateway

Etrust antivirus iris engine

Brightstor arcserve backup laptops desktops

Brightstor process automation manager

Brightstor storage resource manager

Etrust audit aries

Etrust audit irecorder

Etrust directory

Etrust identity minder

Etrust integrated threat management

Itechnology igateway

Unicenter application server managment

Unicenter asset portfolio management

Unicenter autosys jm

Unicenter ca web services distributed management

Unicenter exchange management console

Unicenter service catalog fulfillment accounting

Unicenter service delivery

Unicenter service desk

Unicenter service desk knowledge tools

Unicenter service fulfillment

Unicenter service metric analysis

Unicenter web server management

Cleverpath portal

Brightstor mobile backup

Business protection suite

Desktop protection suite

Server protection suite

Resource initialization manager

Etrust pestpatrol

Integrated threat management

Etrust antivirus webscan

Etrust security command center

Etrust audit client

Etrust audit datatools

Etrust audit policy manager

Protection suites

Internet security suite

Brightstor arcserve backup server

Host-based intrusion prevention system

Desktop management suite

Antispyware for the enterprise

Anti-virus for the enterprise

Etrust antivirus sdk

See all Products for Vendor CA