CA20090615-02: Security Notice for CA Service Desk

Issued: June 15, 2009
Last Updated: June 15, 2009

CA's technical support is alerting customers to a security risk with CA Service Desk r11.2. The release of Tomcat as included with CA Service Desk r11.2 is potentially susceptible to a cross-site scripting vulnerability.  CA has issued a technical document that describes remediation procedures.

Risk Rating

Medium

 Platform

Windows, Unix

 Affected Products

CA Service Desk r11.2

 How to determine if the installation is affected

Customers can use the instructions in technical document TEC489643 to determine if an installation may be affected.

 Solution

Follow the instructions in technical document TEC489643.

 References

CVE-2008-1232

 Change History

Version 1.0: Initial Release

If additional information is required,  please contact CA Support at http://support.ca.com/.

If you discover a vulnerability in CA products, please report your findings to the CA Product Vulnerability Response Team.

Chat with CA

Just give us some brief information and we'll connect you to the right CA ExpertCA sales representative.

Our hours of availability are 8AM - 5PM CST.

All Fields Required

connecting

We're matching your request.

Unfortunately, we can't connect you to an agent. If you are not automatically redirected please click here.

  • {{message.agentProfile.name}} will be helping you today.

    View Profile


  • Transfered to {{message.agentProfile.name}}

    {{message.agentProfile.name}} joined the conversation

    {{message.agentProfile.name}} left the conversation

  • Your chat with {{$storage.chatSession.messages[$index - 1].agentProfile.name}} has ended.
    Thank you for your interest in CA.


    Rate Your Chat Experience.

    {{chat.statusMsg}}

agent is typing