Computer Security

RSA Access Manager Server / Agent vulnerabilities
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



RSA Access Manager Server / Agent vulnerabilities
Published:09.09.2010
Source:BUGTRAQ
SecurityVulns ID:11121
Type:remote
Level:5/10
Description:Few restriction bypass vulnerabilities
Affected:EMC : RSA Access Manager Server 5.5
 EMC : RSA Access Manager Server 6.0
 EMC : RSA Access Manager Server 6.1
 EMC : RSA Access Manager Agent 4.7
CVE:CVE-2010-3018 (RSA Access Manager Server 5.5.3 before 5.5.3.172, 6.0.4 before 6.0.4.53, and 6.1 before 6.1.2.01 does not properly perform cache updates, which allows remote attackers to obtain sensitive information via unspecified vectors.)
 CVE-2010-3017 (Unspecified vulnerability in RSA Access Manager Agent 4.7.1 before 4.7.1.7, when RSA Adaptive Authentication Integration is enabled, allows remote attackers to bypass authentication and obtain sensitive information via unknown vectors.)
Original documentdocumentEMC, ESA-2010-016: RSA, The Security Division of EMC, releases security hot fix for a potential vulnerability in RSA® Access Manager Agent when working with RSA® Adaptive Authentication. (09.09.2010)
 documentEMC, ESA-2010-014: RSA, The Security Division of EMC, releases security hot fixes for potential vulnerability in RSA® Access Manager Server under certain conditions. (09.09.2010)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru