Rsa: >> Authentication Agent For Web >> 5.2 Security Vulnerabilities
Directory traversal vulnerability in RSA Authentication Agent 7.0 before P2 for Web allows remote attackers to read unspecified data via unknown vectors.
CVSS Score
5.0
EPSS Score
0.001
Published
2010-09-24
Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication Agent for Web (aka SecurID Web Agent) 5.2 and 5.3 for IIS allows remote attackers to execute arbitrary code via a long url parameter in the Redirect method.
CVSS Score
6.4
EPSS Score
0.741
Published
2005-12-31
Cross-site scripting (XSS) vulnerability in RSA Authentication Agent for Web 5.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the image parameter in a GetPic operation.
CVSS Score
4.3
EPSS Score
0.009
Published
2005-10-27
Cross-site scripting (XSS) vulnerability in IISWebAgentIF.dll in the RSA Authentication Agent for Web 5.2 allows remote attackers to inject arbitrary web script or HTML via the postdata parameter.
CVSS Score
4.3
EPSS Score
0.01
Published
2005-04-14