CVE-2013-7292

2014-01-13T15:37:00
ID CVE-2013-7292
Type cve
Reporter cve@mitre.org
Modified 2014-01-14T15:01:00

Description

VASCO IDENTIKEY Authentication Server (IAS) 3.4.x allows remote authenticated users to bypass Active Directory (AD) authentication by entering only a DIGIPASS one-time password, instead of the intended combination of this one-time password and a multiple-time AD password.