Untrusted search path vulnerability in EMC RSA SecurID Software Token 4.1 before 4.1.1 allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by a directory that contains a Software Token file.
Max CVSS
9.3
EPSS Score
0.09%
Published
2011-12-17
Updated
2017-08-29
WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to cause the WebID agent to enter debug mode via a URL containing null characters, which may allow attackers to obtain sensitive information.
Max CVSS
7.5
EPSS Score
0.33%
Published
2001-10-24
Updated
2017-07-11
Directory traversal vulnerability in WebID in RSA Security SecurID 5.0 as used by ACE/Agent for Windows, Windows NT and Windows 2000 allows attackers to access restricted resources via URL-encoded (1) /.. or (2) \.. sequences.
Max CVSS
7.5
EPSS Score
0.42%
Published
2001-10-22
Updated
2017-07-11
3 vulnerabilities found