NotCVE - vendor:"Rsa" product:"Authentication Agent" version:" <= 6.1.3"

3 results (0.004 seconds)

CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0

CVE-2013-0941

https://notcve.org/view.php?id=CVE-2013-0941

22 May 2013 — EMC RSA Authentication API before 8.1 SP1, RSA Web Agent before 5.3.5 for Apache Web Server, RSA Web Agent before 5.3.5 for IIS, RSA PAM Agent before 7.0, and RSA Agent before 6.1.4 for Microsoft Windows use an improper encryption algorithm and a weak key for maintaining the stored data of the node secret for the SecurID Authentication API, which allows local users to obtain sensitive information via cryptographic attacks on this data. La API de autenticación de EMC RSA anterior a v8.1 SP1, RSA Web Agent an... • http://archives.neohapsis.com/archives/bugtraq/2013-05/0064.html • CWE-310: Cryptographic Issues •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2008-2026

https://notcve.org/view.php?id=CVE-2008-2026

30 Apr 2008 — Cross-site scripting (XSS) vulnerability in WebID/IISWebAgentIF.dll in RSA Authentication Agent 5.3.0.258, and other versions before 5.3.3.378, allows remote attackers to inject arbitrary web script or HTML via a URL-encoded postdata parameter. NOTE: this is different than CVE-2005-1118, but it might be the same as CVE-2008-1470. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en WebID/IISWebAgentIF.dll del RSA Authentication Agent (Agente de Autentificación RSA) 5.3.0.258 y otras versione... • http://secunia.com/advisories/14954 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

CVE-2008-2027

https://notcve.org/view.php?id=CVE-2008-2027

30 Apr 2008 — Open redirect vulnerability in WebID/IISWebAgentIF.dll in RSA Authentication Agent 5.3.0.258 for Web for IIS, when accessed via certain browsers such as Mozilla Firefox, allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via an ftp URL in the url parameter to a Redirect action. Vulnerabilidad de redirección libre en WebID/IISWebAgentIF.dll de RSA Authentication Agent 5.3.0.258 para Web para IIS; cuando se accede desde determinados navegadores como Mozilla Firefox, ... • http://securityreason.com/securityalert/3850 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •