CVE-2006-4991

Name of the Vulnerable Software and Affected Versions RSA Keon Certificate Authority (KeonCA) Manager versions 6.5.1 through 6.6

Description The issue allows privileged local users to hide malicious Certificate Authority (CA) activities by modifying CA auditor logs without detection. This can be achieved in two ways: (1) by modifying or deleting a LOG BLOCK and its signature from the XML log, which is not detected by the integrity check function, or (2) by modifying entries in the live log file, which is only signed during rotation.

Recommendations For RSA Keon Certificate Authority (KeonCA) Manager versions 6.5.1 through 6.6, consider implementing additional logging and monitoring measures to detect potential log modifications. As a temporary workaround, restrict access to the log files to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.