Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-0931

Overview

Vulnerability Score 5.4 5.4
CVE Id CVE-2013-0931
Last Modified 06 Mar 2013 12:00:00
Published 05 Mar 2013 05:03:51
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector ADJACENT_NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2013-0931

Summary

EMC RSA Authentication Agent 7.1.x before 7.1.2 on Windows does not enforce the Quick PIN Unlock timeout feature, which allows physically proximate attackers to bypass the passcode requirement for a screensaved session by entering a PIN after timeout expiration.

Vulnerable Systems

Application

  • Rsa Authentication Agent For Windows 7.1

  • Rsa Authentication Agent For Windows 7.1.1


References

BUGTRAQ - 20130228 ESA-2013-012: RSA Authentication Agent 7.1.1 for Microsoft Windows Access Control Vulnerability


Last Updated: 27 May 2016 10:47:24