Change Download Preference

Current Preference
Change Preference to:

CA20100222-01: Security Notice for CA Service Desk

Issued: February 22, 2010

CA's support is alerting customers to a security risk with CA Service Desk r12.1. The release of Tomcat as included with CA Service Desk r12.1 is potentially susceptible to a cross-site scripting vulnerability. CA has issued a technical document that describes remediation procedures.

Risk Rating




Affected Products

CA Service Desk r12.1

How to determine if the installation is affected

Customers can use the instructions in technical document TEC503137 to determine if an installation may be affected.


Follow the instructions in technical document TEC503137.



Change History

Version 1.0: Initial Release

If additional information is required, please contact CA Support at

If you discover a vulnerability in CA products, please report your findings to the CA Product Vulnerability Response Team.