Bypass of Passcode Requirement in EMC RSA Authentication Agent on Windows
CVE-2013-0931

Currently unrated

Key Information:

Vendor: Rsa
Status: Authentication Agent For Windows
Vendor: CVE Published:; 5 March 2013

What is CVE-2013-0931?

The EMC RSA Authentication Agent 7.1.x on Windows does not properly enforce the Quick PIN Unlock timeout feature. This flaw enables attackers physically close to the device to circumvent the passcode requirement for sessions secured by a screensaver. By entering a PIN after the timeout period has expired, unauthorized access may be granted, risking sensitive information. Therefore, users are urged to update to the latest version to mitigate this issue.

References

http://archives.neohapsis.com/archives/bugtraq/2013-03/00...

mailing-listx_refsource_BUGTRAQ

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Mar 5, 2013

Rsa

What is CVE-2013-0931?

References

Timeline