Ca · Ca Service Metric Analysis · CVE-2009-0043
**Name of the Vulnerable Software and Affected Versions**
CA Service Metric Analysis versions r11.0 through r11.1 SP1
CA Service Level Management version 3.5
**Description**
The issue is related to the smmsnmpd service, which does not properly restrict access. This allows remote attackers to execute arbitrary commands.
**Recommendations**
For CA Service Metric Analysis versions r11.0 through r11.1 SP1, update to a version that properly restricts access to the smmsnmpd service.
For CA Service Level Management version 3.5, update to a version that properly restricts access to the smmsnmpd service.
As a temporary workaround, consider restricting access to the smmsnmpd service until a patch is available.