Directory Traversal Vulnerability in RSA Security SecurID by RSA Security
CVE-2001-1461

Currently unrated

Key Information:

Vendor: Rsa
Status: Securid
Vendor: CVE Published:; 22 October 2001

What is CVE-2001-1461?

A directory traversal vulnerability exists in the WebID component of RSA Security SecurID 5.0, affecting its ACE/Agent for Windows, Windows NT, and Windows 2000. This vulnerability allows attackers to exploit URL-encoded sequences involving '/../' or '..' to gain unauthorized access to restricted resources within the file system. Proper measures should be taken to secure applications vulnerable to this type of attack.

References

http://www.kb.cert.org/vuls/id/348040

third-party-advisoryx_refsource_CERT-VN

https://exchange.xforce.ibmcloud.com/vulnerabilities/7397

vdb-entryx_refsource_XF

http://www.securityfocus.com/bid/3461

vdb-entryx_refsource_BID

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Apr 21, 2005
Vulnerability published
Oct 22, 2001

Rsa

What is CVE-2001-1461?

References

Timeline