CA20100222-01: Security Notice for CA Service Desk

Issued: February 22, 2010

CA's support is alerting customers to a security risk with CA Service Desk r12.1. The release of Tomcat as included with CA Service Desk r12.1 is potentially susceptible to a cross-site scripting vulnerability. CA has issued a technical document that describes remediation procedures.

Risk Rating




Affected Products

CA Service Desk r12.1

How to determine if the installation is affected

Customers can use the instructions in technical document TEC503137 to determine if an installation may be affected.


Follow the instructions in technical document TEC503137.



Change History

Version 1.0: Initial Release

If additional information is required, please contact CA Support at

If you discover a vulnerability in CA products, please report your findings to the CA Product Vulnerability Response Team.

Chat with CA

Just give us some brief information and we'll connect you to the right CA ExpertCA sales representative.

Our hours of availability are 8AM - 5PM CST.

All Fields Required


We're matching your request.

Unfortunately, we can't connect you to an agent. If you are not automatically redirected please click here.

  • {{}} will be helping you today.

    View Profile

  • Transfered to {{}}

    {{}} joined the conversation

    {{}} left the conversation

  • Your chat with {{$storage.chatSession.messages[$index - 1]}} has ended.
    Thank you for your interest in CA.

    Rate Your Chat Experience.


agent is typing