1 results (0.001 seconds)
CVSS: 5.8EPSS: 0%CPEs: 15EXPL: 0
CVSS: 5.8EPSS: 0%CPEs: 15EXPL: 0CVE-2011-1411
https://notcve.org/view.php?id=CVE-2011-1411
02 Sep 2011 — Shibboleth OpenSAML library 2.4.x before 2.4.3 and 2.5.x before 2.5.1, and IdP before 2.3.2, allows remote attackers to forge messages and bypass authentication via an "XML Signature wrapping attack." La librería Shibboleth OpenSAML v2.4.x antes de v2.4.3 y v2.5.x antes de v2.5.1, e IdP antes de v2.3.2, permite a atacantes remotos falsificar mensajes y eludir la autenticación a través de un ataque "XML Signature wrapping" • http://secunia.com/advisories/50994 • CWE-287: Improper Authentication •