CVE-2015-3317

Name of the Vulnerable Software and Affected Versions CA Client Automation versions r12.5 SP01, r12.8, and r12.9 CA Network and Systems Management versions r11.0, r11.1, and r11.2 CA NSM Job Management Option versions r11.0, r11.1, and r11.2 CA Universal Job Management Agent (affected versions not specified) CA Virtual Assurance for Infrastructure Managers versions 12.6, 12.7, 12.8, and 12.9 CA Workload Automation AE versions r11, r11.3, r11.3.5, and r11.3.6

Description The issue is related to improper bounds checking, which allows local users to gain privileges via unspecified vectors.

Recommendations For CA Client Automation versions r12.5 SP01, r12.8, and r12.9, update to a version that properly performs bounds checking. For CA Network and Systems Management versions r11.0, r11.1, and r11.2, update to a version that properly performs bounds checking. For CA NSM Job Management Option versions r11.0, r11.1, and r11.2, update to a version that properly performs bounds checking. For CA Universal Job Management Agent, at the moment, there is no information about a newer version that contains a fix for this issue. For CA Virtual Assurance for Infrastructure Managers versions 12.6, 12.7, 12.8, and 12.9, update to a version that properly performs bounds checking. For CA Workload Automation AE versions r11, r11.3, r11.3.5, and r11.3.6, update to a version that properly performs bounds checking.