CVE-2015-0523
Summary
| CVE | CVE-2015-0523 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2015-03-12 10:59:00 UTC |
| Updated | 2016-08-24 19:26:00 UTC |
| Description | EMC RSA Certificate Manager (RCM) before 6.9 build 558 and RSA Registration Manager (RRM) before 6.9 build 558 allow remote attackers to cause an Administration Server denial of service via an invalid MIME e-mail message with a multipart/* Content-Type header. |
Risk And Classification
Problem Types: CWE-20
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Emc | Rsa Certificate Manager | All | All | All | All |
| Application | Emc | Rsa Registration Manager | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Bugtraq: ESA-2015-014: RSA® Digital Certificate Solution Multiple Vulnerabilities | BUGTRAQ | seclists.org | Third Party Advisory, VDB Entry |
| RSA Digital Certificate Manager Input Validation Flaws Permit Cross-Site Scripting and Denial of Service Attacks - SecurityTracker | SECTRACK | www.securitytracker.com | Third Party Advisory, VDB Entry |
| RSA Digital Certificate Solution XSS / Denial Of Service ≈ Packet Storm | MISC | packetstormsecurity.com | Third Party Advisory, VDB Entry |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.