CA Total Defense

ソフト名：CA Total Defense r12

回避策：アップデートにて対応

脆弱性：データ操作, 機密情報の奪取, システムアクセス, SQLインジェクション, ディレクトリトラバーサル, ローカルファイルアップロード

ソース：http://home3.ca.com/partnerportal/business/BusinessProducts/totaldefense.aspx

https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID={CD065CEC-AFE2-4D9D-8E0B-BE7F6E345866}

http://www.zerodayinitiative.com/advisories/ZDI-11-126/

http://www.zerodayinitiative.com/advisories/ZDI-11-127/

http://www.zerodayinitiative.com/advisories/ZDI-11-128/

http://www.zerodayinitiative.com/advisories/ZDI-11-129/

http://www.zerodayinitiative.com/advisories/ZDI-11-130/

http://www.zerodayinitiative.com/advisories/ZDI-11-131/

http://www.zerodayinitiative.com/advisories/ZDI-11-132/

http://www.zerodayinitiative.com/advisories/ZDI-11-133/

http://www.zerodayinitiative.com/advisories/ZDI-11-134/

http://secunia.com/advisories/44097/

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1653

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1654

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1655

CVE：CVE-2011-1653, CVE-2011-1654, CVE-2011-1655

危険性：Medium Risk