CVE-2013-0942
Summary
| CVE | CVE-2013-0942 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2013-05-22 13:29:00 UTC |
| Updated | 2013-05-22 13:29:00 UTC |
| Description | Cross-site scripting (XSS) vulnerability in EMC RSA Authentication Agent 7.1 before 7.1.1 for Web for Internet Information Services, and 7.1 before 7.1.1 for Web for Apache, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. |
Risk And Classification
Problem Types: CWE-79
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Apache | Http Server | All | All | All | All |
| Application | Apache | Http Server | All | All | All | All |
| Application | Emc | Rsa Authentication Agent | 7.1 | All | All | All |
| Application | Emc | Rsa Authentication Agent | 7.1 | All | All | All |
| Application | Microsoft | Internet Information Server | All | All | All | All |
| Application | Microsoft | Internet Information Server | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 20130510 ESA-2013-031: RSA Authentication Agent Cross-Site Scripting (XSS) Vulnerability | BUGTRAQ | archives.neohapsis.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.