First published: Wed Dec 20 2006(Updated: )
Unspecified vulnerability in CA CleverPath Portal before maintenance version 4.71.001_179_060830, as used in multiple products including BrightStor Portal r11.1, CleverPath Aion BPM r10 through r10.2, eTrust Security Command Center r1 and r8, and Unicenter, does not properly handle when multiple Portal servers are started at the same time and share the same data store, which might cause a Portal user to inherit the session and credentials of a user who is on another Portal server.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Unicenter Enterprise Job Manager | =r1_sp3 | |
CleverPath Aion BPM | =r10.2 | |
CleverPath Aion BPM | =r10 | |
CleverPath Portal | =r4.71 | |
CleverPath Aion BPM | =r10.1 | |
Unicenter Database Management Portal | =r11 | |
Unicenter Management Portal | =r2.0 | |
CleverPath Portal | =r4.51 | |
Unicenter Management Portal | =r11.0 | |
Unicenter Management Portal | =r3.1 | |
Unicenter Asset And Portfolio Management | =r11 | |
Unicenter Database Command Center | =r11.1 | |
Unicenter Workload Control Center | =r1_sp4 | |
Arcserve Brightstor | =11.1 | |
eTrust Security Command Center | =r8 | |
eTrust Security Command Center | =r1 | |
CleverPath Portal | =r4.7 | |
Broadcom Cleverpath Portal | <=4.71 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.