Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7266

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-7266
Last Modified 03 Dec 2010 12:00:00
Published 26 Nov 2010 03:00:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-7266

Summary

Cross-site scripting (XSS) vulnerability in an unspecified Shockwave Flash file in RSA Adaptive Authentication 2.x and 5.7.x allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Vulnerable Systems

Application

  • Rsa Adaptive Authentication 2.0

  • Rsa Adaptive Authentication 5.7.0

  • Rsa Adaptive Authentication 5.7.2

  • Rsa Adaptive Authentication 5.7.3


References

CONFIRM - https://knowledge.rsasecurity.com/scolcms/set.aspx?id=8192

VUPEN - ADV-2010-3055

SECTRACK - 1024775

BUGTRAQ - 20101123 ESA-2010-019: RSA, The Security Division of EMC, is reissuing this advisory regarding a potential cross-site scripting vulnerability that has been identified in RSAR Adaptive Authentication (On Premise) versions 2.x and 5.7.x. Patch 105162

SECUNIA - 42332


Last Updated: 27 May 2016 10:49:32