Possible vulnerability with workstation.jnlp

book

Article ID: 143391

calendar_today

Updated On:

Products

CA Application Performance Management Agent (APM / Wily / Introscope) CA Application Performance Management (APM / Wily / Introscope) INTROSCOPE DX Application Performance Management

Issue/Introduction

Vulnerability Scanning Report shows, while initiating WebStart Workstation with Chrome, downloading workstation.jnlp, and then launching it. 

Cause

Per Engineering, this is not a threat. Rather, a caching mechanism triggers it. 

Environment

Release : 10.7.0

Component : APM Agents

Resolution

Engineering will address this in future releases with improved cache handling.

Attachments