Entrust Information for VU#720017
Entrust Authority Security Manager (EASM) does not enforce multiple authorization requirement for master user password change
- Vendor Information Help Date Notified: 12 Feb 2003
- Statement Date:
- Date Updated: 03 Apr 2003
This issue has been resolved in the latest commercial release of Entrust Authority Security Manager, version 6.0.1 released on July 2, 2002. Entrust customers can get more information at: https://www.entrust.com/support/resources/e03-003.htm.
The vendor has not provided us with any further information regarding this vulnerability.
The CERT/CC has no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.