Back to search
CVE-2015-0277
Published: Aug 17, 2015
Modified: Aug 6, 2024
PUBLISHED
Description
The Service Provider (SP) in PicketLink before 2.7.0 does not ensure that it is a member of an Audience element when an AudienceRestriction is specified, which allows remote attackers to log in to other users' accounts via a crafted SAML assertion. NOTE: this identifier has been SPLIT per ADT2 due to different vulnerability types. See CVE-2015-6254 for lack of validation for the Destination attribute in a Response element in a SAML assertion.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
RHSA-2015:0849
vendor-advisory
x_refsource_REDHAT
RHSA-2015:0848
vendor-advisory
x_refsource_REDHAT
RHSA-2015:0846
vendor-advisory
x_refsource_REDHAT
https://bugzilla.redhat.com/show_bug.cgi?id=1194832
x_refsource_CONFIRM
https://issues.jboss.org/browse/PLINK-678
x_refsource_CONFIRM
RHSA-2015:0847
vendor-advisory
x_refsource_REDHAT
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now