Intrusion Prevention

CA.XOsoft.Control.Service.Entrypoint.Aspx.Code.Execution

Description

This indicates an attack attempt against a code-execution vulnerability in
CA XOsoft Control Service.
The vulnerability is caused by an error when the vulnerable software handles a malicious request to entrypoint.aspx. It allows a remote attacker to execute
arbitrary code via sending a crafted request.

Affected Products

CA XOsoft r12.0 and r12.5

Impact

System Compromise: Remote attackers can gain control of vulnerable systems.

Recommended Actions

Apply the latest update from the vendor.

CVE References

CVE-2010-1223