CA20121205-01: Security Notice for CA XCOM Data Transport on Unix and Linux
Published:
December 05 2012, 01:24 PM
by
Kevin Kotas
I published a new security notice today for a remote command execution vulnerability reported by Jurgens van der Merwe and Junaid Loonat from SensePost that affects the Unix and Linux versions of XCOM Data Transport. This notice has a risk rating of high due to the possibility of total server compromise. To our knowledge, this vulnerability is not being actively exploited. For more information, see the security notice below:
CA20121205-01: Security Notice for CA XCOM Data Transport on Unix and Linux
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=%7b358F44CA-6354-4427-9088-C57138E9EE11%7d
Kevin Kotas
Director, CA Technologies Product Vulnerability Response Team
The opinions and statements on this site are my own and do not necessarily reflect the opinions or policies of CA.
By: Kevin Kotas
Kevin Kotas is a Director of the CA Product Vulnerability Response Team. He has over fifteen years of vulnerability management experience and discovered several vulnerabilities in products from multiple major software providers. Kevin holds a B.S. degree in Computer Science from North Carolina State...
Read More..