Re: SiteMinder Agent: Cross Site Scripting
> Subject: SiteMinder Agent: Cross Site Scripting
> From: "Giuseppe Gottardi" <overet () securitydate ! it>
> Date: 2007-11-07 3:10:00
Security Advisory for CA Products utilizing CA SiteMinder Web
Agent
Last Updated: November 8, 2007
CA is aware of a report describing a cross-site scripting
vulnerability affecting CA SiteMinder Web Agent and is currently
investigating.
After we have completed our analysis of this issue, we will post
an update on the CA SupportConnect website. If additional
information is required, please contact CA Technical Support at
http://supportconnect.ca.com.
If you discover a vulnerability in CA products, please report your
findings to vuln AT ca.com, or utilize our "Submit a
Vulnerability" form at
https://www.ca.com/us/securityadvisor/vulninfo/submit.aspx.
Ref:
http://supportconnectw.ca.com/public/antivirus/infodocs/casiteminder-secnotice.asp
Regards,
Ken
Ken Williams ; 0xE2941985
Director, CA Vulnerability Research