CA XOsoft 'SOAP'请求身份认证和信息泄露漏洞

admin
admin
admin
0
文章
0
评论
2022-07-16 17:26:49 CNNVD漏洞 来源:ZONE.CI 全球网 0 阅读模式

漏洞信息详情

CA XOsoft 'SOAP'请求身份认证和信息泄露漏洞

  • CNNVD编号:CNNVD-201004-112
  • 危害等级: 中危
  • CVE编号: CVE-2010-1221
  • 漏洞类型: 授权问题
  • 发布时间: 2010-04-07
  • 威胁类型: 远程
  • 更新时间: 2010-04-08
  • 厂        商: ca
  • 漏洞来源:

漏洞简介

CA XOsoft提供全面的故障恢复、业务连续性和连续数据保护解决方案,能够满足企业的DR、故障切换和数据恢复需求。

CA XOsoft \'\'SOAP\'\'请求存在身份认证和信息泄露漏洞。CA XOsoft产品没有合适的处理身份认证,远程攻击者可以借助一个SOAP请求枚举用户名称。

漏洞公告

目前厂商已经发布了升级补丁以修复此安全问题,补丁获取链接:

Computer Associates XOsoft Content Distribution r12

Computer Associates RO16643

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO16643

Computer Associates XOsoft High Availability r12.5

Computer Associates RO15016

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO15016

Computer Associates XOsoft Replication r12

Computer Associates RO16643

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO16643

Computer Associates XOsoft High Availability r12

Computer Associates RO16643

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO16643

Computer Associates XOsoft Content Distribution r12.5

Computer Associates RO15016

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO15016

Computer Associates XOsoft Replication r12.5

Computer Associates RO15016

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO15016

Computer Associates XOsoft Content Distribution r12

Computer Associates RO16643

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO16643

Computer Associates XOsoft High Availability r12.5

Computer Associates RO15016

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO15016

Computer Associates XOsoft Replication r12

Computer Associates RO16643

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO16643

Computer Associates XOsoft High Availability r12

Computer Associates RO16643

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO16643

Computer Associates XOsoft Content Distribution r12.5

Computer Associates RO15016

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO15016

Computer Associates XOsoft Replication r12.5

Computer Associates RO15016

https://support.ca.com/irj/portal/anonymous/redirArticles?reqPage=sear ch&searchID=RO15016

参考网址

来源: support.ca.com

链接:https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=232869

来源: BID

名称: 39244

链接:http://www.securityfocus.com/bid/39244

来源: BUGTRAQ

名称: 20100406 CA20100406-01: Security Notice for CA XOsoft

链接:http://www.securityfocus.com/archive/1/archive/1/510564/100/0/threaded

受影响实体

  • Ca Xosoft_replication:R12.5  
  • Ca Xosoft_replication:R12.0  
  • Ca Xosoft_high_availability:R12.5  
  • Ca Xosoft_high_availability:R12.0  
  • Ca Xosoft_content_distribution:R12.5  

补丁

  • Solution Document for RO17181
  • Solution Document for RO17180

weinxin
特别声明
本站(ZONE.CI)所有文章仅供技术研究,若将其信息做其他用途,由用户承担全部法律及连带责任,本站不承担任何法律及连带责任,请遵守中华人民共和国安全法.
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
咨询加Q:999999999
ZONE.CI 全球网 | 安全领域涉猎者-乌云独行地带
ZONE.CI 全球网 安全领域涉猎者-乌云独行地带
获取本源码
售前咨询加Q:120433200
站媒体网仿《知更鸟》模板
获取本源码 zmt6.com
评论:0   参与:  0