Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4611

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-4611
Last Modified 17 Aug 2013 02:49:20
Published 27 Nov 2012 04:55:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4611

Summary

Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Adaptive Authentication On-Premise (AAOP) before 7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vulnerable Systems

Application

  • Emc Rsa Adaptive Authentication On-premise 2.0

  • Emc Rsa Adaptive Authentication On-premise 5.7.0

  • Emc Rsa Adaptive Authentication On-premise 5.7.2

  • Emc Rsa Adaptive Authentication On-premise 5.7.3

  • Emc Rsa Adaptive Authentication On-premise 6.0

  • Emc Rsa Adaptive Authentication On-premise 6.0.2.1


References

BUGTRAQ - 20121126 ESA-2012-054: RSA Adaptive Authentication (On-Premise) Cross-Site Scripting Vulnerabilities

BID - 56699

SECTRACK - 1027811

SECUNIA - 51394

MISC - http://packetstormsecurity.com/files/118381/RSA-Adaptive-Authentication-On-Premise-6.x-XSS.html

OSVDB - 87876


Last Updated: 27 May 2016 10:49:51