Vulnerabilities > RSA > Securid

DATE CVE VULNERABILITY TITLE RISK
2011-12-17 CVE-2011-4141 Unspecified vulnerability in RSA Securid 4.1/4.1.0.545
Untrusted search path vulnerability in EMC RSA SecurID Software Token 4.1 before 4.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a Software Token file.
network
rsa
critical
9.3
2007-07-15 CVE-2007-2417 Buffer Overflow vulnerability in Progress and OpenEdge _mprosrv
Heap-based buffer overflow in _mprosrv.exe in Progress Software Progress 9.1E and OpenEdge 10.1x, as used by the RSA Authentication Manager 6.0 and 6.1, SecurID Appliance 2.0, ACE/Server 5.2, and possibly other products, allows remote attackers to execute arbitrary code via crafted packets.
network
low complexity
rsa progress
critical
10.0
2002-08-12 CVE-2002-0507 Improper Authentication vulnerability in multiple products
An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID authentication for a previous user via several submissions of an OWA Authentication request with the proper OWA password for the previous user, which is eventually accepted by OWA.
local
low complexity
microsoft rsa CWE-287
2.1
2001-10-24 CVE-2001-1462 Information Disclosure vulnerability in RSA Securid 5.0
WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to cause the WebID agent to enter debug mode via a URL containing null characters, which may allow attackers to obtain sensitive information.
network
low complexity
rsa
7.5
2001-10-22 CVE-2001-1461 Directory Traversal vulnerability in RSA Securid 5.0
Directory traversal vulnerability in WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to access restricted resources via URL-encoded (1) /..
network
low complexity
rsa
7.5