Detections
Analytics

CVE-2009-0043

critical

Description

The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote attackers to execute arbitrary commands via unspecified vectors.

References

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=196148

http://www.vupen.com/english/advisories/2009/0053

http://www.securityfocus.com/bid/33161

http://www.securityfocus.com/archive/1/499857/100/0/threaded

http://securityreason.com/securityalert/4887

http://community.ca.com/blogs/casecurityresponseblog/archive/2009/01/07.aspx

Details

Source: Mitre, NVD

Published: 2009-01-08

Updated: 2025-04-09

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.22537