Computer Security
[EN] securityvulns.ru no-pyccku


RSA Access Manager Server / Agent vulnerabilities
Published:09.09.2010
Source:
SecurityVulns ID:11121
Type:remote
Threat Level:
5/10
Description:Few restriction bypass vulnerabilities
Affected:EMC : RSA Access Manager Server 5.5
 EMC : RSA Access Manager Server 6.0
 EMC : RSA Access Manager Server 6.1
 EMC : RSA Access Manager Agent 4.7
CVE:CVE-2010-3018 (RSA Access Manager Server 5.5.3 before 5.5.3.172, 6.0.4 before 6.0.4.53, and 6.1 before 6.1.2.01 does not properly perform cache updates, which allows remote attackers to obtain sensitive information via unspecified vectors.)
 CVE-2010-3017 (Unspecified vulnerability in RSA Access Manager Agent 4.7.1 before 4.7.1.7, when RSA Adaptive Authentication Integration is enabled, allows remote attackers to bypass authentication and obtain sensitive information via unknown vectors.)
Original documentdocumentEMC, ESA-2010-016: RSA, The Security Division of EMC, releases security hot fix for a potential vulnerability in RSA® Access Manager Agent when working with RSA® Adaptive Authentication. (09.09.2010)
 documentEMC, ESA-2010-014: RSA, The Security Division of EMC, releases security hot fixes for potential vulnerability in RSA® Access Manager Server under certain conditions. (09.09.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod