CVE-2003-1311

Name of the Vulnerable Software and Affected Versions Netegrity SiteMinder (affected versions not specified)

Description The issue concerns the siteminderagent/SmMakeCookie.ccc component in Netegrity SiteMinder, which fails to validate the TARGET parameter. This allows remote attackers to create a URL that could deceive users into visiting an arbitrary web site referenced by this parameter.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.