We completed the following fixes, corrections, or updates for the CA 2E Web Option:
When you attempt to generate the HTML of a function from within the EDIT FUNCTION DETAILS panel, the generation is not successful and the error message displays:
W2G1046(Function is locked panel)
Using the YW2EJOBX API we can identify that a running job is a Web Option related job. But the API did not identify the job correctly when Web Option associated with the job and the YW2EJOBX API did not belong to the same release.
When a LST condition has multiple VAL options which have varying number of leading spaces, the LST condition is not identified correctly at runtime. Instead, the specific VAL option that is being used, is displayed at runtime.
When a customization is applied to "DATE" fields on a screen, the HTML generation process fails to recognize the customization.
When an element customization is longer than 222 characters, only the first 222 characters are written into the HTML file and rest are truncated.
Consider a scenario wherein a function has a 27*132 screen and a long screen constant (length greater than 80 characters) is defined in it. When the HTML of this function is generated, it leads to the following errors:
Web Option is potentially vulnerable to unauthenticated privilege escalation due to a predictable session token. With predicted token, you can possibly access the details of another active session.
The relevant vulnerability is announced with a CVE identifier, CVE-2014-1219.
|
Copyright © 2014 CA.
All rights reserved.
|
|