RSA Security, Inc. Information for VU#466161
XML signature HMAC truncation authentication bypass
- Vendor Information Help Date Notified:
- Statement Date: 14 Jul 2009
- Date Updated: 14 Jul 2009
Status
Affected
Vendor Statement
No statement is currently available from the vendor regarding this vulnerability.
Vendor Information
RSA products potentially impacted by this vulnerability are (RSA Security Advisories are accessible only by the customers):
- RSA(r) BSAFE Cert-J and SSL-J - Security Advisory:
- RSA(r) Federated Identity Manager - Security Advisory:
The updates and patches are available on the RSA SecurCare Online
website (https://knowledge.rsasecurity.com).
Vendor References
None
Addendum
There are no additional comments at this time.
If you have feedback, comments, or additional information about this vulnerability, please send us email.
View Notes By
Report a Vulnerability
Please use the Vulnerability Reporting Form to report a vulnerability. Alternatively, you can send us email. Be sure to read our vulnerability disclosure policy.