CA20090615-02: Security Notice for CA Service Desk - CA Technologies
{{search ? 'Close':'Search'}}

CA20090615-02: Security Notice for CA Service Desk

Issued: June 15, 2009
Last Updated: June 15, 2009

CA's technical support is alerting customers to a security risk with CA Service Desk r11.2. The release of Tomcat as included with CA Service Desk r11.2 is potentially susceptible to a cross-site scripting vulnerability.  CA has issued a technical document that describes remediation procedures.

Risk Rating

Medium

 Platform

Windows, Unix

 Affected Products

CA Service Desk r11.2

 How to determine if the installation is affected

Customers can use the instructions in technical document TEC489643 to determine if an installation may be affected.

 Solution

Follow the instructions in technical document TEC489643.

 References

CVE-2008-1232

 Change History

Version 1.0: Initial Release

If additional information is required,  please contact CA Support at http://support.ca.com/.

If you discover a vulnerability in CA products, please report your findings to the CA Product Vulnerability Response Team.

Chat with CA

Just give us some brief information and we'll connect you to the right CA Expert.

Our hours of availability are 8AM - 5PM CST.

All Fields Required

connecting

We're matching your request.

Unfortunately, we can't connect you to an agent. If you are not automatically redirected please click here.

  • {{message.agentProfile.name}} will be helping you today.

    View Profile


  • Transfered to {{message.agentProfile.name}}

    {{message.agentProfile.name}} joined the conversation

    {{message.agentProfile.name}} left the conversation

  • Your chat with {{$storage.chatSession.messages[$index - 1].agentProfile.name}} has ended.
    Thank you for your interest in CA.


    How Did We Do?
    Let us know how we did so that we can maintain a quality experience.

    Take Our Survey >

    Rate Your Chat Experience.

    {{chat.statusMsg}}

agent is typing