Login or Register to Ask a Question and Join Our Community


Security Advisories (RSS)

S-287: CA Unicenter DSM ITRM Legends ActiveX Vulnerability

Login to Discuss or Reply to this Discussion in Our Community

 
Thread Tools Search this Thread
Special Forums Cybersecurity Security Advisories (RSS) S-287: CA Unicenter DSM ITRM Legends ActiveX Vulnerability
# 1  
Old 05-09-2008
S-287: CA Unicenter DSM ITRM Legends ActiveX Vulnerability
The CA Unicenter DMS ITRM Legends ActiveX control contains an integer overflow vulnerability, which can allow a remote attacker to execute arbitrary code on a vulnerable system. The risk is MEDIUM. By convincing a user to view a specially crafted HTML document (e.g., a web page or an HTML email message or attachment), an attacker may be able to execute arbitrary code with the privileges of the user.


More...
Login or Register to Ask a Question

Previous Thread | Next Thread
Login or Register to Ask a Question

LEARN ABOUT CENTOS

scap-workbench

scap-workbench(20)					  System Administration Utilities					scap-workbench(20)

NAME

       scap-workbench - GUI tool for systems compliance evaluation

SYNOPSIS

       scap-workbench [XCCDF_FILE]

DESCRIPTION

       scap-workbench is GUI tool for security compliance checking. Compliance can be described with SCAP standards - XCCDF and OVAL.

       This tool enables users to:
	       * evaluate local and/or remote machines using SCAP content (scanning)
	       * perform remediation on both local and remote machines (remediation)
	       * adjust XCCDF scanning profiles (tailoring)

OPTIONS

       XCCDF_FILE
	      If this parameter is provided the scanner will immediately open given XCCDF or source datastream (SDS) file after it starts.

SCAP CONTENT

       Sample content is provided by the OpenSCAP project (in the openscap-content package).

       Other sources of SCAP content are:

       National Vulnerability Database - http://web.nvd.nist.gov/view/ncp/repository

       Red Hat content repository - http://www.redhat.com/security/data/oval/

       scap-security-guide project - http://fedorahosted.org/scap-security-guide/

       sce-community-content project - http://fedorahosted.org/sce-community-content/

AUTHORS

       Martin Preisler <mpreisle@redhat.com>

NOTES

       scap-workbench uses the OpenSCAP library, see http://www.open-scap.org

SEE ALSO

       oscap(8)

Red Hat 							     Sep 2013							scap-workbench(20)