We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2018-1234



Description

RSA Authentication Agent version 8.0.1 and earlier for Web for IIS is affected by a problem where access control list (ACL) permissions on a Windows Named Pipe were not sufficient to prevent access by unauthorized users. The attacker with local access to the system can exploit this vulnerability to read configuration properties for the authentication agent.

Reserved 2017-12-06 | Published 2018-03-30 | Updated 2024-09-16 | Assigner dell

Problem types

Sensitive Information Disclosure Vulnerability

Product status

version 8.0.1 and earlier
affected

References

seclists.org/fulldisclosure/2018/Mar/60 (20180326 DSA-2018-040: RSA Authentication Agent for Web for IIS and Apache Web Server Multiple Vulnerabilities) mailing-list

www.securitytracker.com/id/1040577 (1040577) vdb-entry

cve.org (CVE-2018-1234)

nvd.nist.gov (CVE-2018-1234)

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2018-1234

Support options

Helpdesk Chat, Email, Knowledgebase
Telegram Chat
Subscribe to our newsletter to learn more about our work.

© Copyright 2024 THREATINT
Made in Cyprus with +
 System status
Find us on
Data Privacy
Terms of Use
Logo BSI Allianz für Cyber-Sicherheit
Error loading Crisp.chat. Please check your web content filter and browser plugins.