Vulnerabilities for Securid (...) - CXSECURITY.COM

Vulnerabilities for 'Securid'

2011-12-16

CVE-2011-4141

CWE-Other

Untrusted search path vulnerability in EMC RSA SecurID Software Token 4.1 before 4.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a Software Token file.

2002-08-12

CVE-2002-0507

An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID authentication for a previous user via several submissions of an OWA Authentication request with the proper OWA password for the previous user, which is eventually accepted by OWA.

2001-10-24

CVE-2001-1462

WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to cause the WebID agent to enter debug mode via a URL containing null characters, which may allow attackers to obtain sensitive information.

2001-10-22

CVE-2001-1461

Directory traversal vulnerability in WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to access restricted resources via URL-encoded (1) /.. or (2) \.. sequences.

>>> Vendor: RSA 39 Products

Bsafe ssl-j sdk

Authentication agent for web

Securid web agent

Keon certificate authority manager

Authentication manager

Keon registration authority web interface

Authentication agent

Adaptive authentication

Federated identity manager

Access manager agent

Access manager server

Authentication client

Securid software token converter

Securid appliance

Authentication agent for windows

Authentication api

Pluggable authentication module

Pluggable authentication module agent

Bsafe crypto-c me

Bsafe crypto-c me mfp psos

Bsafe crypto-c me mfp vxworks

Bsafe crypto-j jsafe and jce

Adaptive authentication (on premise)

Identity management and governance

Governance and lifecycle

Lifecycle and governance

Archer grc platform

Copyright 2024, cxsecurity.com