RSS   Vulnerabilities for
'Java open single sign-on project home'
   RSS

2012-10-09
 
CVE-2012-5352

CWE-287
 

 
Java Open Single Sign-On Project Home (JOSSO) allows remote attackers to forge messages and bypass authentication via a SAML assertion that lacks a Signature element, aka a "Signature exclusion attack."

 


Copyright 2018, cxsecurity.com

 

Back to Top