PT-2010-3923 · Rsa · Rsa Federated Identity Manager

Publicado

2010-07-27

·

Atualizado

2017-08-17

·

CVE-2010-2337

CVSS v2.0

6.0

Média

VetorAV:N/AC:M/Au:S/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions RSA Federated Identity Manager versions 4.0 through 4.0.24 RSA Federated Identity Manager versions 4.1 through 4.1.25
Description The issue allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks.
Recommendations For RSA Federated Identity Manager versions 4.0 through 4.0.24, update to version 4.0.25 or later. For RSA Federated Identity Manager versions 4.1 through 4.1.25, update to version 4.1.26 or later.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

CVE-2010-2337

Produtos afetados

Rsa Federated Identity Manager