Computer Security

CA Arcot WebFort Versatile Authentication Server security vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



CA Arcot WebFort Versatile Authentication Server security vulnerabilities
Published:27.04.2011
Source:BUGTRAQ
SecurityVulns ID:11630
Type:remote
Level:5/10
Description:Crossite scripting, request spoofing.
Affected:CA : Arcot WebFort Versatile Authentication Server 6.2
CVE:CVE-2011-1826 (Open redirect vulnerability in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.)
 CVE-2011-1825 (Multiple cross-site scripting (XSS) vulnerabilities in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
Original documentdocumentCA, CA20110426-01: Security Notice for CA Arcot WebFort Versatile Authentication Server (27.04.2011)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru