Rsa: Security Vulnerabilities
An interaction between Microsoft Outlook Web Access (OWA) with RSA SecurID allows local users to bypass the SecurID authentication for a previous user via several submissions of an OWA Authentication request with the proper OWA password for the previous user, which is eventually accepted by OWA.
CVSS Score
2.1
EPSS Score
0.01
Published
2002-08-12
WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to cause the WebID agent to enter debug mode via a URL containing null characters, which may allow attackers to obtain sensitive information.
CVSS Score
7.5
EPSS Score
0.016
Published
2001-10-24
Directory traversal vulnerability in WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to access restricted resources via URL-encoded (1) /.. or (2) \.. sequences.
CVSS Score
7.5
EPSS Score
0.005
Published
2001-10-22
RSA ACE/Server allows remote attackers to cause a denial of service by flooding the server's authentication request port with UDP packets, which causes the server to crash.
CVSS Score
5.0
EPSS Score
0.012
Published
2000-06-08
Buffer overflow in RSAREF2 via the encryption and decryption functions in the RSAREF library.
CVSS Score
10.0
EPSS Score
0.032
Published
1999-12-01
Page 12