Computer Associates SiteMinder 'login.fcc' Cross Site Scripting Vulnerability

Bugtraq ID: 50962
Class: Input Validation Error
CVE: CVE-2011-4054
Remote: Yes
Local: No
Published: Dec 07 2011 12:00AM
Updated: Aug 28 2012 10:10AM
Credit: Jon Passki of Aspect Security
Vulnerable: Computer Associates SiteMinder R6 SP6 CR7
Computer Associates SiteMinder R12 SP3 CR8
Computer Associates SiteMinder R12
Computer Associates SiteMinder 6QMR5 CR13
Computer Associates SiteMinder 6.0 SP4
Computer Associates SiteMinder 6.0 CR31
Computer Associates SiteMinder 6.0
Computer Associates SiteMinder 0
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus