Entrust Information for VU#720017

Entrust Authority Security Manager (EASM) does not enforce multiple authorization requirement for master user password change

Status

Affected

Vendor Statement

This issue has been resolved in the latest commercial release of Entrust Authority Security Manager, version 6.0.1 released on July 2, 2002. Entrust customers can get more information at: https://www.entrust.com/support/resources/e03-003.htm.

Vendor Information

The vendor has not provided us with any further information regarding this vulnerability.

Vendor References

None

Addendum

The CERT/CC has no additional comments at this time.

If you have feedback, comments, or additional information about this vulnerability, please send us email.