You are here

V-174: RSA Authentication Manager Writes Operating System, SNMP, and HTTP Plug-in Proxy Passwords in Clear Text to Log Files

June 10, 2013 - 12:47am

Addthis

PROBLEM:

RSA Authentication Manager Writes Operating System, SNMP, and HTTP Plug-in Proxy Passwords in Clear Text to Log Files

PLATFORM:

RSA Authentication Manager 8.0

ABSTRACT:

A vulnerability was reported in RSA Authentication Manager. 

REFERENCE LINKS:

RSA
SecurityTracker Alert ID:  1028638
CVE-2013-0947

IMPACT ASSESSMENT:

Medium

DISCUSSION:

The system may write operating system, SNMP, and HTTP plug-in proxy passwords in clear text to log and configuration files.

IMPACT:

A local user can obtain operating system, SNMP, and HTTP plug-in proxy passwords.

SOLUTION:

The vendor has issued a fix (8.0 Patch 1 (P1)).

Addthis