2 matches found
CVE-2013-7292
VASCO IDENTIKEY Authentication Server IAS 3.4.x allows remote authenticated users to bypass Active Directory AD authentication by entering only a DIGIPASS one-time password, instead of the intended combination of this one-time password and a multiple-time AD password...
CVE-2013-7292
CVE-2013-7292 affects VASCO IDENTIKEY Authentication Server (IAS) 3.4.x. An authenticated remote user can bypass Active Directory authentication by supplying only a DIGIPASS one-time password instead of the required OTP plus a multi-factor AD password. The available sources consistently describe ...