RSS   Podatności dla 'Shibboleth-identity-provider'   RSS

2011-09-02
 
CVE-2011-1411

CWE-287
 

 
Shibboleth OpenSAML library 2.4.x before 2.4.3 and 2.5.x before 2.5.1, and IdP before 2.3.2, allows remote attackers to forge messages and bypass authentication via an "XML Signature wrapping attack."

 

 >>> Vendor: Shibboleth 7 Produkty
Opensaml
Shibboleth-identity-provider
Shibboleth-sp
Service provider
Identity provider
Opensaml java
Identify provider


Copyright 2021, cxsecurity.com

 

Back to Top