CVE-2011-3339

Name of the Vulnerable Software and Affected Versions SafeNet Sentinel HASP (formerly Aladdin HASP SRM) run-time installer versions prior to 6.x SafeNet Sentinel HASP (formerly Aladdin HASP SRM) SDK versions prior to 5.11 Sentinel HASP Run-time Environment version 5.95 and earlier

Description A cross-site scripting (XSS) issue exists in the Admin Control Center of the affected software, allowing remote attackers to inject arbitrary web script or HTML via unspecified vectors when the Firefox 2.0 browser is used. This occurs due to the ability to trigger write access to a configuration file.

Recommendations For Sentinel HASP Run-time Environment version 5.95 and earlier, update to a version later than 5.95. For SafeNet Sentinel HASP (formerly Aladdin HASP SRM) run-time installer versions prior to 6.x, update to version 6.x or later. For SafeNet Sentinel HASP (formerly Aladdin HASP SRM) SDK versions prior to 5.11, update to version 5.11 or later.