CVE-2010-1221 Information

Description

CA XOsoft r12.0 and r12.5 does not properly perform authentication which allows remote attackers to enumerate usernames via a SOAP request.

Reference

http://www.securityfocus.com/archive/1/510564/100/0/threaded http://www.securityfocus.com/bid/39244 https://support.ca.com/irj/portal/anonymous/phpsupcontent?contentID=232869