Widespread Vulnerability Found in Single-Sign-On Products

2018-02-27 14:41

A behavioral quirk in SAML libraries has left many single-sign-on (SSO) implementations vulnerable to abuse. It allows an attacker that has gained any authenticated access to trick the system into granting further access as a different user without knowledge of that user's password. read more

News URL

http://feedproxy.google.com/~r/Securityweek/~3/R3p6h5rCaFA/widespread-vulnerability-found-single-sign-products

#singlesignon #vulnerability