Информационная безопасность
[RU] switch to English


Уязвимости безопасности в EMC RSA Adaptive Authentication (On-Premise)
Опубликовано:19 декабря 2011 г.
Источник:
SecurityVulns ID:12106
Тип:удаленная
Уровень опасности:
5/10
Описание:Возможен обход защиты.
Затронутые продукты:EMC : RSA Adaptive Authentication On-Premise 6.0
CVE:CVE-2011-2742 (EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1, and SP3 does not properly perform forensic evaluation upon receipt of device tokens from mobile apps, which might allow remote attackers to bypass intended application restrictions via a mobile device.)
 CVE-2011-2741 (EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 SP1 Patch 2, SP1 Patch 3, SP2, SP2 Patch 1, and SP3 does not properly implement Device Recovery and Device Identification, which might allow remote attackers to bypass intended security restrictions on a (1) previously non-registered device or (2) registered device by sending unspecified "data elements.")
Оригинальный текстdocumentEMC, ESA-2011-036: RSA, The Security Division of EMC, announces the release of a Security Fix for RSA(r) Adaptive Authentication (On-Premise) (19.12.2011)

О сайте | Условия использования
© SecurityVulns, 3APA3A, Владимир Дубровин
Нижний Новгород