CA Total Defense UNCWS Web Service UnAssignAdminUsers Remote Code Execution Exploit

The UNCWS Web Service component of CA Total Defense listens for SOAP requests. The UnAssignAdminUsers method makes use of the uncsp_UnassignAdminRoles stored procedure, which is vulnerable to SQL Injection. A remote unauthenticated attacker can exploit this to execute arbitrary code on a vulnerable machine with SYSTEM privileges.
Vulnerabilty ID: 
Released Date: 
Wednesday, June 15, 2011 - 19:00