OWASP ESAPI CBC Mode HMAC Authentication Bypass Vulnerability

OWASP ESAPI is prone to an authentication-bypass vulnerability.

Local attackers can exploit this issue to bypass the authentication mechanism and gain unauthorized access.

ESAPI 2.0GA and 2.0.1 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus