Computer Security
[EN] securityvulns.ru no-pyccku


CA Arcot WebFort Versatile Authentication Server security vulnerabilities
Published:27.04.2011
Source:
SecurityVulns ID:11630
Type:remote
Threat Level:
5/10
Description:Crossite scripting, request spoofing.
Affected:CA : Arcot WebFort Versatile Authentication Server 6.2
CVE:CVE-2011-1826 (Open redirect vulnerability in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.)
 CVE-2011-1825 (Multiple cross-site scripting (XSS) vulnerabilities in the Administrative Console in CA Arcot WebFort Versatile Authentication Server (VAS) before 6.2.5 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
Original documentdocumentCA, CA20110426-01: Security Notice for CA Arcot WebFort Versatile Authentication Server (27.04.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod