CVE-2012-2281 - OpenCVE

EMC RSA Access Manager Server 6.x before 6.1 SP4 and RSA Access Manager Agent do not properly validate session tokens after a logout, which might allow remote attackers to conduct replay attacks via unspecified vectors.

No CVSS v3.1

No CVSS v3.0

Access Vector Adjacent Network

Access Complexity High

Authentication None

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:A/AC:H/Au:N/C:C/I:C/A:C

Vendors & Products
CPE Configurations

Vendors	Products
Rsa	Access Manager Agent Access Manager Server

Configuration 1 [-]

OR	cpe:2.3:a:rsa:access_manager_agent::::::::
	cpe:2.3:a:rsa:access_manager_server:6.0:::::::*
	cpe:2.3:a:rsa:access_manager_server:6.1:::::::*
	cpe:2.3:a:rsa:access_manager_server:6.1:sp1::::::
	cpe:2.3:a:rsa:access_manager_server:6.1:sp2::::::
	cpe:2.3:a:rsa:access_manager_server:6.1:sp3::::::

References

Link	Resource
http://archives.neohapsis.com/archives/bugtraq/2012-07/0037.html
http://www.securitytracker.com/id?1027220

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: dell

Published: 2012-07-05T14:00:00

Updated: 2013-03-22T09:00:00

Reserved: 2012-04-19T00:00:00

Link: CVE-2012-2281

JSON object: View

NVD Information

Status : Modified

Published: 2012-07-05T14:55:02.247

Modified: 2013-03-22T03:10:16.110

Link: CVE-2012-2281

JSON object: View

Redhat Information

No data.

CWE

CWE-287

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-07-02T00:00:00", "descriptions": [{"lang": "en", "value": "EMC RSA Access Manager Server 6.x before 6.1 SP4 and RSA Access Manager Agent do not properly validate session tokens after a logout, which might allow remote attackers to conduct replay attacks via unspecified vectors."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2013-03-22T09:00:00", "orgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "shortName": "dell"}, "references": [{"name": "20120702 ESA-2012-026: RSA Access Manager Session Replay Vulnerability", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://archives.neohapsis.com/archives/bugtraq/2012-07/0037.html"}, {"name": "1027220", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id?1027220"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "security_alert@emc.com", "ID": "CVE-2012-2281", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "EMC RSA Access Manager Server 6.x before 6.1 SP4 and RSA Access Manager Agent do not properly validate session tokens after a logout, which might allow remote attackers to conduct replay attacks via unspecified vectors."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20120702 ESA-2012-026: RSA Access Manager Session Replay Vulnerability", "refsource": "BUGTRAQ", "url": "http://archives.neohapsis.com/archives/bugtraq/2012-07/0037.html"}, {"name": "1027220", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id?1027220"}]}}}}, "cveMetadata": {"assignerOrgId": "c550e75a-17ff-4988-97f0-544cde3820fe", "assignerShortName": "dell", "cveId": "CVE-2012-2281", "datePublished": "2012-07-05T14:00:00", "dateReserved": "2012-04-19T00:00:00", "dateUpdated": "2013-03-22T09:00:00", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:rsa:access_manager_agent:*:*:*:*:*:*:*:*", "matchCriteriaId": "DA7DAF54-2358-47E1-A53F-346015547C1A", "vulnerable": true}, {"criteria": "cpe:2.3:a:rsa:access_manager_server:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "BF7733DA-50FD-4688-B981-4F77D734F639", "vulnerable": true}, {"criteria": "cpe:2.3:a:rsa:access_manager_server:6.1:*:*:*:*:*:*:*", "matchCriteriaId": "4C5BA71D-0AF8-4530-ADF1-DB4DA8C47D9B", "vulnerable": true}, {"criteria": "cpe:2.3:a:rsa:access_manager_server:6.1:sp1:*:*:*:*:*:*", "matchCriteriaId": "7912021C-02E3-492E-B269-8E0C839D93C8", "vulnerable": true}, {"criteria": "cpe:2.3:a:rsa:access_manager_server:6.1:sp2:*:*:*:*:*:*", "matchCriteriaId": "04B01065-FD70-47E8-A094-4A6F87852198", "vulnerable": true}, {"criteria": "cpe:2.3:a:rsa:access_manager_server:6.1:sp3:*:*:*:*:*:*", "matchCriteriaId": "372FCAE3-0A73-4EFB-B2CD-271FDBC8F405", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "EMC RSA Access Manager Server 6.x before 6.1 SP4 and RSA Access Manager Agent do not properly validate session tokens after a logout, which might allow remote attackers to conduct replay attacks via unspecified vectors."}, {"lang": "es", "value": "EMC RSA Access Manager Server v6.x antes de v6.1 SP4 y RSA Access Manager Agent no validan correctamente las credenciales despu\u00e9s de un cierre de sesi\u00f3n, lo que podr\u00eda permitir a atacantes remotos para realizar ataques de repetici\u00f3n a trav\u00e9s de vectores no especificados."}], "id": "CVE-2012-2281", "lastModified": "2013-03-22T03:10:16.110", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "HIGH", "accessVector": "ADJACENT_NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 6.8, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:A/AC:H/Au:N/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 3.2, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2012-07-05T14:55:02.247", "references": [{"source": "security_alert@emc.com", "url": "http://archives.neohapsis.com/archives/bugtraq/2012-07/0037.html"}, {"source": "security_alert@emc.com", "url": "http://www.securitytracker.com/id?1027220"}], "sourceIdentifier": "security_alert@emc.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}