Netegrity SiteMinder CVE-2003-1311 Remote Security Vulnerability

Netegrity SiteMinder CVE-2003-1311 Remote Security Vulnerability

Netegrity SiteMinder is prone to a remote security vulnerability. siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder does not ensure that the TARGET parameter names a valid redirection resource, which allows remote attackers to construct a URL that might trick users into visiting an arbitrary web site referenced by this parameter.