2 matches found
CVE-2003-0389
RSA ACE/Agent (Web) 5.x is affected by an XSS vulnerability in the secure redirect/login handling. Public advisories (SEC-CONSULT/Sec-20051025-1) reference RSA ACE/Agent Web 5.1 and 5.1.1 as vulnerable, exploitable via an unfiltered parameter (e.g., GET or form field like postdata) on web login f...
CVE-2003-0389
Cross-site scripting XSS vulnerability in the secure redirect function of RSA ACE/Agent 5.0 for Windows, and 5.x for Web, allows remote attackers to insert arbitrary web script and possibly cause users to enter a passphrase via a GET request containing the script...