Back to search
CVE-2018-1232
Published: Mar 30, 2018
Modified: Sep 17, 2024
PUBLISHED
Description
RSA Authentication Agent version 8.0.1 and earlier for Web for both IIS and Apache Web Server are impacted by a stack-based buffer overflow which may occur when handling certain malicious web cookies that have invalid formats. The attacker could exploit this vulnerability to crash the authentication agent and cause a denial-of-service situation.
| Vendor | Product | Versions |
|---|---|---|
Dell EMC | RSA Authentication Agent for Web for IIS, RSA Authentication Agent for Web for Apache Web Server | affected version 8.0.1 and earlier |
References
20180326 DSA-2018-040: RSA Authentication Agent for Web for IIS and Apache Web Server Multiple Vulnerabilities
mailing-list
x_refsource_FULLDISC
1040577
vdb-entry
x_refsource_SECTRACK
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now