CVSS: 6.4EPSS: 37%CPEs: 2EXPL: 4CVE-2005-4734 – Microsoft IIS - ISAPI RSA WebAgent Redirect Overflow
https://notcve.org/view.php?id=CVE-2005-4734
Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication Agent for Web (aka SecurID Web Agent) 5.2 and 5.3 for IIS allows remote attackers to execute arbitrary code via a long url parameter in the Redirect method. • https://www.exploit-db.com/exploits/16358 http://secunia.com/advisories/17281 http://www.metasploit.com/projects/Framework/exploits.html#rsa_iiswebagent_redirect http://www.osvdb.org/20151 http://www.securityfocus.com/bid/26424 https://knowledge.rsasecurity.com/dlcpages/rsa_securid/securid_dlc_aaweb.asp - •
CVSS: 4.3EPSS: 1%CPEs: 4EXPL: 2CVE-2005-3329 – RSA ACE Agent 5.x - Image Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2005-3329
Cross-site scripting (XSS) vulnerability in RSA Authentication Agent for Web 5.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the image parameter in a GetPic operation. • https://www.exploit-db.com/exploits/26398 http://marc.info/?l=bugtraq&m=113028928630700&w=2 http://marc.info/?l=full-disclosure&m=113027017101376&w=2 http://marc.info/?l=full-disclosure&m=113027324906876&w=2 http://secunia.com/advisories/17331 http://securityreason.com/securityalert/116 http://securitytracker.com/id?1015105 http://www.securityfocus.com/bid/15206 http://www.vupen.com/english/advisories/2005/2203 •
CVSS: 4.3EPSS: 0%CPEs: 1EXPL: 1CVE-2005-1118 – RSA Security RSA Authentication Agent For Web 5.2 - Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2005-1118
Cross-site scripting (XSS) vulnerability in IISWebAgentIF.dll in the RSA Authentication Agent for Web 5.2 allows remote attackers to inject arbitrary web script or HTML via the postdata parameter. • https://www.exploit-db.com/exploits/25421 http://secunia.com/advisories/14954 http://securitytracker.com/id?1013724 http://www.kb.cert.org/vuls/id/366372 http://www.oliverkarow.de/research/rsaxss.txt http://www.securityfocus.com/bid/13168 https://exchange.xforce.ibmcloud.com/vulnerabilities/20098 •