EMC RSA Archer GRC Multiple Security Vulnerabilities

EMC RSA Archer GRC is prone to the following multiple security vulnerabilities:

1. A cross-site request-forgery vulnerability
2. A privilege-escalation vulnerability
3. An information-disclosure vulnerability
4. A cross-site scripting vulnerability
5. An open-redirection vulnerability

Exploiting these issues will allow an attacker to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site, obtain sensitive information, carry out phishing attacks, and perform unauthorized actions with elevated privileges.

RSA Archer GRC 5.5.1.3.1,5.5.2,5.5.2.3,5.5.3.1, and 5.4.1.3 are vulnerable.


 

Privacy Statement
Copyright 2010, SecurityFocus