GCVE - cpe:2.3:a:rsa:authentication_agent_for

Approved changes feed: RSS · Atom

cpe:2.3:a:rsa:authentication_agent_for_web:5.2:*:*:*:*:*:*:*

part: a version: 5.2 update: *

Vendor	Rsa (`6c9430aa-ac8c-5ac3-900a-ccfffd5a25d5`)
Product	Authentication Agent For Web (`ed94c843-5f76-5145-ba9a-463f2b28f637`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from NVD CPE 2.0 feed

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2010-3261`	vulnerable	2026-06-03 14:30:30.553748	Details available Directory traversal vulnerability in RSA Authentication Agent 7.0 before P2 for Web allows remote attackers to read unspecified data via unknown vectors. Published: 2010-09-24T18:00:00.000Z Updated: 2024-08-07T03:03:18.758Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/43406 http://www.securityfocus.com/archive/1/513908/100/0/threaded	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-4734`	vulnerable	2026-06-03 14:27:14.160444	Details available Stack-based buffer overflow in IISWebAgentIF.dll in RSA Authentication Agent for Web (aka SecurID Web Agent) 5.2 and 5.3 for IIS allows remote attackers to execute arbitrary code via a long url parameter in the Redirect method. Published: 2006-03-19T23:00:00.000Z Updated: 2024-08-07T23:53:28.993Z Open on db.gcve.eu Reference links http://www.securityfocus.com/bid/26424 https://knowledge.rsasecurity.com/dlcpages/rsa_securid/securid_dlc_aaweb.asp http://www.osvdb.org/20151 http://www.metasploit.com/projects/Framework/exploits.html#rsa_iiswebagent_redirect http://secunia.com/advisories/17281	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-3329`	vulnerable	2026-06-03 14:27:09.552434	Details available Cross-site scripting (XSS) vulnerability in RSA Authentication Agent for Web 5.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the image parameter in a GetPic operation. Published: 2005-10-27T04:00:00.000Z Updated: 2024-08-07T23:10:08.300Z Open on db.gcve.eu Reference links http://secunia.com/advisories/17331 http://securityreason.com/securityalert/116 http://marc.info/?l=bugtraq&m=113028928630700&w=2 http://marc.info/?l=full-disclosure&m=113027324906876&w=2 http://securitytracker.com/id?1015105	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2005-1118`	vulnerable	2026-06-03 14:26:57.728236	Details available Cross-site scripting (XSS) vulnerability in IISWebAgentIF.dll in the RSA Authentication Agent for Web 5.2 allows remote attackers to inject arbitrary web script or HTML via the postdata parameter. Published: 2005-04-16T04:00:00.000Z Updated: 2024-08-07T21:35:59.936Z Open on db.gcve.eu Reference links http://secunia.com/advisories/14954 http://securitytracker.com/id?1013724 http://www.oliverkarow.de/research/rsaxss.txt http://www.kb.cert.org/vuls/id/366372 http://www.securityfocus.com/bid/13168	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

RSA RSA Authentication Agent for Web 5.2

PURL mappings

Vulnerability references

Contribute