Learn about Go Live with CA Technologies' combined Services, Support and Education.
Published: February 23 2010, 03:51 PM by Kevin Kotas
This week I published two new security notices, CA20100222-01 and CA20100223-01. The first notice, CA20100222-01, describes a medium risk cross-site scripting issue with CA Service Desk. The second, CA20100223-01, discusses a low risk cross-site scripting issue affecting eHealth Performance Manager. At the time of this post, we are not aware of any active exploitation in the wild. See the links below for further details.
CA20100222-01: Security Notice for CA Service Deskhttps://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=229526
CA20100223-01: Security Notice for CA eHealth Performance Managerhttps://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=229652
Kevin KotasCA Product Vulnerability Response Team
The opinions and statements on this site are my own and do not necessarily reflect the opinions or policies of CA.
By: Kevin Kotas Kevin Kotas is an Engineering Services Architect with the CA Product Vulnerability Response Team. He has over eleven years of vulnerability management experience and discovered several vulnerabilities in products from multiple major software providers. Kevin holds a B.S. degree in Computer Science from... Read More..
Comments:
* An asterisk indicates a required field
* Name:
Website:
* Comment: