CVE-2011-2740
Severity Score
9.3
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
EMC RSA Key Manager (RKM) Appliance 2.7 SP1 before 2.7.1.6, when Firefox 4.x or 5.0 is used, does not properly terminate a user session upon a logout action, which makes it easier for remote attackers to execute arbitrary code by leveraging an unattended workstation.
EMC RSA Key Manager (RKM) Appliance v2.7 SP1 antes de v2.7.1.6, cuando se usa Firefox v4.x o v5.0, no finaliza correctamente una sesión de usuario con una acción logout, lo que hace más sencillo para atacantes remotos ejecutar código de su elección aprovechando una estación de trabajo desatendida
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2011-07-13 CVE Reserved
- 2011-11-03 CVE Published
- 2024-08-06 CVE Updated
- 2024-08-18 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-264: Permissions, Privileges, and Access Controls
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://securityreason.com/securityalert/8529 | Third Party Advisory | |
| http://www.securityfocus.com/archive/1/520381 | Mailing List | |
| http://www.securitytracker.com/id?1026276 | Vdb Entry |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | - |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta1 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta10 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta11 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta12 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta2 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta3 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta4 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta5 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta6 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta7 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta8 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0 Search vendor "Mozilla" for product "Firefox" and version "4.0" | beta9 |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 4.0.1 Search vendor "Mozilla" for product "Firefox" and version "4.0.1" | - |
Safe
|
| Emc Search vendor "Emc" | Rsa Key Manager Appliance Search vendor "Emc" for product "Rsa Key Manager Appliance" | 2.7 Search vendor "Emc" for product "Rsa Key Manager Appliance" and version "2.7" | sp1 |
Affected
| in | Mozilla Search vendor "Mozilla" | Firefox Search vendor "Mozilla" for product "Firefox" | 5.0 Search vendor "Mozilla" for product "Firefox" and version "5.0" | - |
Safe
|