Emc rsa Authentication Manager cross-site scripting (CVE-2016-0900)
Emc rsa Authentication Manager cross-site scripting (CVE-2016-0900)
Release date:
Updated on:
Affected Systems:
Emc rsa Authentication Manager <8.1 SP1 P14
Description:
CVE (CAN) ID: CVE-2016-0900
RSA Authentication Manager is a platform behind RSA SecurID. It allows you to centrally manage the RSA SecurID environment across multiple physical sites, including identity Authentication methods, users, applications, and proxies.
RSA Authentication Manager 8.1 SP1 P14 and earlier versions have the cross-site scripting vulnerability, which allows attackers to inject arbitrary Web scripts or HTML.
<* Source: RSA
*>
Suggestion:
Vendor patch:
EMC
---
The vendor has released a patch to fix this security problem. Please download it from the vendor's homepage:
Http://seclists.org/bugtraq/2016/May/att-23/ESA-2016-051.txt
This article permanently updates the link address: