CVE-2011-1654

CVE-2011-1654 affects CA Total Defense Suite (r12) prior to SE2, via the Heartbeat Web Service (CA.Itm.Server.ManagementWS.dll) in the Management Server . An unauthenticated remote attacker can craft an upload to FileUploadHandler.ashx with malicious GUID parameter, enabling arbitrary code execut...