Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
securityvulnsSecurityvulnsSECURITYVULNS:DOC:22264
HistoryAug 08, 2009 - 12:00 a.m.

ZDI-09-052: CA Unicenter Software Delivery dtscore.dll Stack Overflow Vulnerability http://www.zerodayinitiative.com/advisories/ZDI-09-052 August 7, 2009 -- Affected Vendors: Computer Associates -- Affected Products: Computer Associates Unicenter S

2009-08-0800:00:00
vulners.com
27
JSON

CA20090806-02: Security Notice for Unicenter Asset Portfolio
Management, Unicenter Desktop and Server Management, Unicenter
Patch Management

Issued: August 6, 2009

CA's technical support is alerting customers to a security risk with
Unicenter Asset Portfolio Management, Unicenter Desktop and Server
Management, and Unicenter Patch Management. The release of Tomcat as
included with the products is potentially susceptible to a cross-site
scripting vulnerability. CA has issued a solution to address the
issue.

Risk Rating

Medium

Platform

Windows

Affected Products

Unicenter Asset Portfolio Management 11.3
Unicenter Asset Portfolio Management 11.3.4
Unicenter Desktop and Server Management 11.2
Unicenter Patch Management 11.2

How to determine if the installation is affected

Customers can use the following technical documents to determine if
an installation is affected.

Unicenter Asset Portfolio Management:
TEC492816

Unicenter Desktop and Server Management:
TEC491323

Unicenter Patch Management:
TEC491323

Solution

Unicenter Asset Portfolio Management:
Follow the instructions in solution document RI09916.

Unicenter Desktop and Server Management,
Unicenter Patch Management:
Follow the instructions in technical document TEC491323.

References

CVE-2008-1232
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-1232

CA20090806-02: Security Notice for Unicenter Asset Portfolio
Management, Unicenter Desktop and Server Management, Unicenter Patch
Management
(line may wrap)
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=2140
95

Change History

Version 1.0: Initial Release

If additional information is required, please contact CA Support at
http://support.ca.com/

If you discover a vulnerability in CA products, please report your
findings to the CA Product Vulnerability Response Team.
(line may wrap)
https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=1777
82

Kevin Kotas
CA Product Vulnerability Response Team

Related

seebug 1
osv 1
ubuntucve 1
securityvulns 3
f5 2
veracode 1
github 1
prion 1
cve 1
openvas 20
nessus 17
tomcat 3
vmware 4
redhat 5
centos 1
oraclelinux 1
fedora 3
ibm 1
seebug
seebug
Apache Tomcat HttpServletResponse.sendError()跨站脚本漏洞
2008-08-04 00:00:00
osv
osv
Apache Tomcat Cross-site scripting (XSS) vulnerability
2022-05-01 23:37:49
ubuntucve
ubuntucve
CVE-2008-1232
2008-08-04 00:00:00
securityvulns
securityvulns
[CVE-2008-1232] Apache Tomcat XSS vulnerability
2008-08-01 00:00:00
Computer Associates applications multiple security vulnerabilities
2009-08-08 00:00:00
Apache Tomcat multiple security vulnerabilities
2009-01-28 00:00:00
f5
f5
K9108 : Apache Tomcat Cross-site scripting (XSS) vulnerability - CVE-2008-1232
2013-03-24 00:00:00
SOL9108 - Apache Tomcat Cross-site scripting (XSS) vulnerability - CVE-2008-1232
2008-09-01 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2018-11-09 06:35:59
github
github
Apache Tomcat Cross-site scripting (XSS) vulnerability
2022-05-01 23:37:49
prion
prion
Cross site scripting
2008-08-04 01:41:00
cve
cve
CVE-2008-1232
2008-08-04 01:41:00
openvas
openvas
Apache Tomcat Cross-Site Scripting and Security Bypass Vulnerabilities
2008-08-07 00:00:00
RedHat Update for tomcat RHSA-2008:0648-01
2009-03-06 00:00:00
Fedora Update for tomcat6 FEDORA-2008-7977
2009-02-17 00:00:00
nessus
nessus
RHEL 4 / 5 : jbossweb (RHSA-2008:0877)
2013-01-24 00:00:00
VMSA-2009-0002 : VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27
2009-10-19 00:00:00
Apache Tomcat 4.x < 4.1.39 Multiple Vulnerabilities
2010-06-11 00:00:00
tomcat
tomcat
Fixed in Apache Tomcat 5.5.27
2008-09-08 00:00:00
Fixed in Apache Tomcat 6.0.18
2008-07-31 00:00:00
Fixed in Apache Tomcat 4.1.39
2008-01-07 00:00:00
vmware
vmware
VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27
2009-02-23 00:00:00
VirtualCenter Update 4 and ESX patch update Tomcat to version 5.5.27
2009-02-23 00:00:00
VMware vCenter and ESX update release and vMA patch release address multiple security issues in third party components
2009-11-20 00:00:00
redhat
redhat
(RHSA-2008:0877) Important: jbossweb security update
2008-09-22 00:00:00
(RHSA-2008:0648) Important: tomcat security update
2008-08-27 00:00:00
(RHSA-2008:0864) Important: tomcat security update
2008-10-02 00:00:00
centos
centos
tomcat5 security update
2008-08-28 22:01:41
oraclelinux
oraclelinux
tomcat security update
2008-08-27 00:00:00
fedora
fedora
[SECURITY] Fedora 9 Update: tomcat5-5.5.27-0jpp.2.fc9
2008-09-16 23:25:10
[SECURITY] Fedora 9 Update: tomcat6-6.0.18-1.1.fc9
2008-09-11 17:17:43
[SECURITY] Fedora 8 Update: tomcat5-5.5.27-0jpp.2.fc8
2008-09-16 23:28:35
ibm
ibm
Security Bulletin: TADDM affected by multiple vulnerabilities due to Apache Tomcat libraries
2023-01-27 10:54:22
JSON
Related for SECURITYVULNS:DOC:22264
seebug1osv1ubuntucve1securityvulns3f52veracode1github1prion1cve1openvas20nessus17tomcat3vmware4redhat5centos1oraclelinux1fedora3ibm1