Vulnerability Description
Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows remote attackers to execute arbitrary commands via spoofed CAFT packets.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Advantage Data Transport | 3.0 |
| Broadcom | Adviseit | 2.4 |
| Broadcom | Brightstor Portal | 11.1 |
| Broadcom | Brightstor San Manager | 1.1 |
| Broadcom | Cleverpath Aion | 10.0 |
| Broadcom | Cleverpath Ecm | 3.5 |
| Broadcom | Cleverpath Olap | 5.1 |
| Broadcom | Cleverpath Predictive Analysis Server | 2.0 |
| Broadcom | Etrust Admin | 8.0 |
| Broadcom | Messaging | 1.5 |
| Broadcom | Unicenter Application Performance Monitor | 3.0 |
| Broadcom | Unicenter Asset Management | 3.1 |
| Broadcom | Unicenter Data Transport Option | 2.0 |
| Broadcom | Unicenter Jasmine | 3.0 |
| Broadcom | Unicenter Management Portal | 2.0 |
| Broadcom | Unicenter Network And Systems Management | 3.0 |
| Broadcom | Unicenter Nsm Wireless Network Management Option | 3.0 |
| Broadcom | Unicenter Performance Management | 2.4 |
| Broadcom | Unicenter Remote Control | 6.0 |
| Broadcom | Unicenter Service Level Management | 3.0 |
References
- http://secunia.com/advisories/16513Third Party Advisory
- http://supportconnectw.ca.com/public/ca_common_docs/camsecurity_notice.aspBroken LinkVendor Advisory
- http://www.osvdb.org/18917Broken Link
- http://www.securityfocus.com/bid/14623Third Party AdvisoryVDB Entry
- http://www.vupen.com/english/advisories/2005/1482Permissions Required
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=32919Vendor Advisory
- http://secunia.com/advisories/16513Third Party Advisory
- http://supportconnectw.ca.com/public/ca_common_docs/camsecurity_notice.aspBroken LinkVendor Advisory
- http://www.osvdb.org/18917Broken Link
- http://www.securityfocus.com/bid/14623Third Party AdvisoryVDB Entry
- http://www.vupen.com/english/advisories/2005/1482Permissions Required
- http://www3.ca.com/securityadvisor/vulninfo/vuln.aspx?id=32919Vendor Advisory
FAQ
What is CVE-2005-2669?
CVE-2005-2669 is a vulnerability with a CVSS score of 10.0 (HIGH). Computer Associates (CA) Message Queuing (CAM / CAFT) 1.05, 1.07 before Build 220_13, and 1.11 before Build 29_13 allows remote attackers to execute arbitrary commands via spoofed CAFT packets.
How severe is CVE-2005-2669?
CVE-2005-2669 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-2669?
Check the references section above for vendor advisories and patch information. Affected products include: Broadcom Advantage Data Transport, Broadcom Adviseit, Broadcom Brightstor Portal, Broadcom Brightstor San Manager, Broadcom Cleverpath Aion.