Authentication Agent For Web@* Security Vulnerabilities and Issues — Authentication Agent For Web@* CVE List

Lucene search

RsaAuthentication Agent For Web*

5 matches found

CVE•added 2018/03/30 9:29 p.m.•76 views

CVE-2018-1233

RSA Authentication Agent version 8.0.1 and earlier for Web for both IIS and Apache Web Server are affected by a cross-site scripting vulnerability. The attackers could potentially exploit this vulnerability to execute arbitrary HTML or JavaScript code in the user's browser session in the context of...

6.1CVSS6.5AI score0.00214EPSS

CVE•added 2018/03/30 9:29 p.m.•71 views

CVE-2018-1234

RSA Authentication Agent version 8.0.1 and earlier for Web for IIS is affected by a problem where access control list (ACL) permissions on a Windows Named Pipe were not sufficient to prevent access by unauthorized users. The attacker with local access to the system can exploit this vulnerability to...

5.5CVSS6.3AI score0.00106EPSS

CVE•added 2018/03/30 9:29 p.m.•69 views

CVE-2018-1232

RSA Authentication Agent version 8.0.1 and earlier for Web for both IIS and Apache Web Server are impacted by a stack-based buffer overflow which may occur when handling certain malicious web cookies that have invalid formats. The attacker could exploit this vulnerability to crash the authenticatio...

7.5CVSS7.7AI score0.02206EPSS

CVE•added 2005/10/27 10:2 a.m.•43 views

CVE-2005-3329

Cross-site scripting (XSS) vulnerability in RSA Authentication Agent for Web 5.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the image parameter in a GetPic operation.

4.3CVSS5.8AI score0.00877EPSS

CVE•added 2010/09/24 7:0 p.m.•41 views

CVE-2010-3261

Directory traversal vulnerability in RSA Authentication Agent 7.0 before P2 for Web allows remote attackers to read unspecified data via unknown vectors.

5CVSS6.8AI score0.00063EPSS