Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2014-0624

Overview

Vulnerability Score 2.7 2.7
CVE Id CVE-2014-0624
Last Modified 07 Mar 2014 02:17:23
Published 06 Mar 2014 06:55:05
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector ADJACENT_NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2014-0624

Summary

EMC RSA Data Loss Prevention (DLP) 9.x before 9.6-SP2 does not properly manage sessions, which allows remote authenticated users to gain privileges and bypass intended content-reading restrictions via unspecified vectors.

Vulnerable Systems

Application

  • Emc Rsa Data Loss Prevention 9.0

  • Emc Rsa Data Loss Prevention 9.5

  • Emc Rsa Data Loss Prevention 9.6


References

BUGTRAQ - 20140228 ESA-2014-003: RSA Data Loss Prevention Improper Session Management Vulnerability


Last Updated: 27 May 2016 11:04:34