CA Total Defense UNCWS DeleteReports SQL Injection

Added: 05/12/2011
CVE: CVE-2011-1653
BID: 47355


CA Total Defense is a combined host-based anti-virus, anti-spyware, firewall, and IPS solution.


CA Total Defense includes a web service management component, which in version r12 prior to SE2, fails to validate certain parameters. The DeleteReports function of this service is vulnerable to a SQL Injection attack.


Upgrade to CA Total Defense r12 SE2 or later.



Tested against CA Total Defense Suite r12 on Windows Server 2003 SP2 English (DEP OptOut) and Windows Server 2008 SP2 English (DEP OptOut).

The target must have read access to the specified SMB share.

The login and password of an account with write access to the specified SMB share must be provided.

The target server must be configured to listen on the HTTP port.



Back to exploit index