Computer Security
[EN] securityvulns.ru no-pyccku


RSA NetWitness Informer multiple security vulnerabilities
Published:10.12.2012
Source:
SecurityVulns ID:12765
Type:remote
Threat Level:
5/10
Description:Web interface multiple vulnerabilities.
Affected:EMC : RSA NetWitness Informer 2.0
CVE:CVE-2012-4609 (The web interface in EMC RSA NetWitness Informer before 2.0.5.6 allows remote attackers to conduct clickjacking attacks via unspecified vectors.)
 CVE-2012-4608 (Cross-site request forgery (CSRF) vulnerability in the web interface in EMC RSA NetWitness Informer before 2.0.5.6 allows remote attackers to hijack the authentication of arbitrary users.)
Original documentdocumentEMC, ESA-2012-052 RSA NetWitness Informer Cross-Site Request Forgery and Click-jacking Vulnerabilities (10.12.2012)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod