Vulnerability Description
Multiple SQL injection vulnerabilities in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r11.6 allow remote attackers to execute arbitrary SQL commands via CsAgent service commands with opcodes (1) 0x07, (2) 0x08, (3) 0x09, (4) 0x1E, (5) 0x32, (6) 0x36, (7) 0x40, and possibly others.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Broadcom | Brightstor Hierarchical Storage Manager | <= 11.5 |
Related Weaknesses (CWE)
References
- http://dvlabs.tippingpoint.com/advisory/TPTI-07-17
- http://secunia.com/advisories/26914Vendor Advisory
- http://securitytracker.com/id?1018747
- http://supportconnectw.ca.com/public/bstorhsm/infodocs/bstorhsm-secnot.aspPatch
- http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35692Patch
- http://www.securityfocus.com/archive/1/480808/100/0/threaded
- http://www.securityfocus.com/bid/25823
- http://www.vupen.com/english/advisories/2007/3275Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/36828
- http://dvlabs.tippingpoint.com/advisory/TPTI-07-17
- http://secunia.com/advisories/26914Vendor Advisory
- http://securitytracker.com/id?1018747
- http://supportconnectw.ca.com/public/bstorhsm/infodocs/bstorhsm-secnot.aspPatch
- http://www.ca.com/us/securityadvisor/vulninfo/vuln.aspx?id=35692Patch
- http://www.securityfocus.com/archive/1/480808/100/0/threaded
FAQ
What is CVE-2007-5084?
CVE-2007-5084 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Multiple SQL injection vulnerabilities in Computer Associates (CA) BrightStor Hierarchical Storage Manager (HSM) before r11.6 allow remote attackers to execute arbitrary SQL commands via CsAgent servi...
How severe is CVE-2007-5084?
CVE-2007-5084 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5084?
Check the references section above for vendor advisories and patch information. Affected products include: Broadcom Brightstor Hierarchical Storage Manager.