Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2733

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2011-2733
Last Modified 05 Oct 2011 10:50:27
Published 18 Aug 2011 07:55:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication SINGLE_INSTANCE

CVE-2011-2733

Summary

EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1, and SP3 does not prevent reuse of authentication information during a session, which allows remote authenticated users to bypass intended access restrictions via vectors related to knowledge of the originally used authentication information and unspecified other session information.

Vulnerable Systems

Application

  • Emc Rsa Adaptive Authentication On-premise 6.0.2.1


References

BID - 49574

BUGTRAQ - 20110816 ESA-2011-027: RSA, The Security Division of EMC, releases Security Patch for Adaptive Authentication (On-Premise)

SREASON - 8344


Last Updated: 27 May 2016 10:57:05