MidnightBSD

Advisories for siteminder_agent_for_sharepoint

CVE-2013-2279 HIGH

CA SiteMinder Federation (FSS) 12.5, 12.0, and r6; Federation (Standalone) 12.1 and 12.0; Agent for SharePoint 2010; and SiteMinder for Secure Proxy Server 6.0, 12.0, and 12.5 does not properly verify XML signatures for SAML statements, which allows remote attackers to spoof other users and gain privileges.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-20,

Products Affected

Vendor Product Version
siteminder_federation 12.5 *
siteminder_federation 12.1 -
siteminder_federation 12.0 *
siteminder_agent_for_sharepoint 2010 *
siteminder_for_secure_proxy_server 12.0 *
siteminder_for_secure_proxy_server 6.0 *
siteminder_federation r6.0 *
siteminder_for_secure_proxy_server 12.5 *
siteminder_federation 12.0 -