Posted by ZDI Disclosures on Apr 13
ZDI-11-128: CA Total Defense Suite UnassignFunctionalUsers Stored Procedure SQL Injection Vulnerability
http://www.zerodayinitiative.com/advisories/ZDI-11-128
April 13, 2011
— CVE ID:
CVE-2011-1653
— CVSS:
10, (AV:N/AC:L/Au:N/C:C/I:C/A:C)
— Affected Vendors:
CA
— Affected Products:
CA Total Defense Suite
— TippingPoint(TM) IPS Customer Protection:
TippingPoint IPS customers have been protected against this
vulnerability by Digital…