Vulnerabilities > CVE-2003-0389 - Unspecified vulnerability in RSA ACE Agent 5.0
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE network
rsa
Summary
Cross-site scripting (XSS) vulnerability in the secure redirect function of RSA ACE/Agent 5.0 for Windows, and 5.x for Web, allows remote attackers to insert arbitrary web script and possibly cause users to enter a passphrase via a GET request containing the script.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Packetstorm
data source https://packetstormsecurity.com/files/download/65731/PR07-44.txt id PACKETSTORM:65731 last seen 2016-12-05 published 2008-04-24 reporter ProCheckUp source https://packetstormsecurity.com/files/65731/ProCheckUp-Security-Advisory-2007.44.html title ProCheckUp Security Advisory 2007.44 data source https://packetstormsecurity.com/files/download/40995/SEC-20051025-1.txt id PACKETSTORM:40995 last seen 2016-12-05 published 2005-10-27 reporter sec-consult.com source https://packetstormsecurity.com/files/40995/SEC-20051025-1.txt.html title SEC-20051025-1.txt