Vulnerability Note VU#342793
RSA Keon cross-site scripting vulnerabilities
The RSA KEON Registration Authority web interface contains multiple cross-site scripting (XSS) vulnerabilities.
The RSA Keon Certificate Authority (CA) software is a digital certificate management system. The RSA KEON Registration Authority allows the CA to handle large numbers of certificate requests.
The RSA KEON Registration Authority web interface contains multiple cross-site scripting vulnerabilities.
An attacker may be able to obtain sensitive data from the site running the RSA KEON Registration Authority software or use the vulnerability create spoofed content.
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|RSA Security, Inc.||Affected||07 Aug 2007||31 Oct 2007|
CVSS Metrics (Learn More)
Thanks to GamaSEC for reporting this vulnerability.
This document was written by Ryan Giobbi.
- CVE IDs: CVE-2007-5703
- Date Public: 26 Oct 2007
- Date First Published: 26 Oct 2007
- Date Last Updated: 14 Nov 2007
- Severity Metric: 0.97
- Document Revision: 6
If you have feedback, comments, or additional information about this vulnerability, please send us email.