EMC RSA Authentication Agent Access Control Bypass Vulnerability (Windows) Network Vulnerability

Summary

The host is installed with RSA Authentication Agent and is prone to security bypass vulnerability.

Impact

Successful exploitation will allow attacker to bypass intended token authentication step and establish a login session to a remote host with Windows credentials.

Solution

Upgrade to version 7.1.1 or later, For updates refer to http://www.rsa.com/node.aspx?id=2575

Insight

Flaw is due to unspecified configuration, allowing users to login with Windows credentials, which can be exploited to bypass the RSA authentication mechanism.

Affected

RSA Authentication Agent version 7.1 on Windows XP and Windows 2003

Detection

Get the installed version with the help of detect NVT and check the version is vulnerable or not.

References

http://archives.neohapsis.com/archives/bugtraq/2012-09/att-0102/ESA-2012-037.txt
http://secunia.com/advisories/50735
http://www.osvdb.com/85727
http://xforce.iss.net/xforce/xfdb/78802

Updated on 2015-03-25

Severity

Classification

CVE CVE-2012-2287

CVSS	Base Score: 8.5 AV:N/AC:M/Au:S/C:C/I:C/A:C

Related Vulnerabilities

Adobe AIR Multiple Vulnerabilities-01 Jan15 (Windows)
Adobe Acrobat and Reader PDF Handling Code Execution Vulnerability (Mac OS X)
Adobe Air Remote Code Execution Vulnerability -June13 (Windows)
Adobe Acrobat Multiple Unspecified Vulnerabilities-01 Sep13 (Mac OS X)
Adobe Flash Player Arbitrary Code Execution Vulnerability - 01 Feb14 (Mac OX S)

Take action and discover your vulnerabilities