RSS   Vulnerabilities for 'Eduserv'   RSS

2012-10-09
 
CVE-2012-5353

CWE-287
 

 
Eduserv OpenAthens SP 2.0 for Java allows remote attackers to forge messages and bypass authentication via a SAML assertion that lacks a Signature element, aka a "Signature exclusion attack."

 

 >>> Vendor: Eduserv 2 Products
Eduserv
Openathens service provider


Copyright 2024, cxsecurity.com

 

Back to Top