Multiple CA SiteMinder Products SAML Signature Validation Security Bypass Vulnerability

Multiple CA SiteMinder products are prone to a signature-verification security-bypass vulnerability.

An attacker can exploit this issue to bypass the signature validation mechanism and impersonate another user.

This vulnerability affects the following products:

CA SiteMinder Federation
CA SiteMinder Agent for SharePoint
CA SiteMinder for Secure Proxy Server


 

Privacy Statement
Copyright 2010, SecurityFocus